cjoint

Publicité


Publicité

Format du document : text/plain

Prévisualisation

~ Rapport de ZHPDiag v2015.4.13.38 - Nicolas Coolman (13/04/2015)
~ Lancé par betto (15/04/2015 20:08:35)
~ Facebook : https://www.facebook.com/nicolascoolman1
~ Adresse du Forum http://forum.nicolascoolman.fr
~ Traduit par Nicolas Coolman
~ Etat de la version : Version à jour.
~ Liste blanche : Désactivée par l'utilisateur
~ Elévation des Privilèges : OK
~ User Account Control (UAC): Deactivate by program


---\\ Navigateurs Internet
MSIE: Internet Explorer v9.0.8112.16421

---\\ Informations sur les produits Windows
~ Langage: Français
Windows Server License Manager Script : OK
~ Windows Operating System - Vista, OEM_SLP channel
System Locked Preinstallation (OEM_SLP) : OK
Windows ID Activation : OK
~ Windows Partial Key : 6CJ97
Windows License : OK
Windows Automatic Updates : OK
Windows Vista (TM) Home Premium, 64-bit Service Pack 2 (Build 6002)

---\\ Logiciels de protection du système
Malwarebytes Anti-Malware version 2.0.4.1028
Microsoft Security Client v4.7.0205.0
Spybot - Search & Destroy v1.6.2

---\\ Logiciels d'optimisation du système
CCleaner v5.02

---\\ Logiciels de partage PeerToPeer
eMule
µTorrent v3.3.0.29625 =>P2P.µTorrent

---\\ Surveillance de Logiciels
Adobe Flash Player 17 NPAPI
Adobe Reader 9.5.5 - Français

---\\ Informations sur le système
~ Processor: Intel64 Family 6 Model 26 Stepping 4, GenuineIntel
~ Operating System: 64 Bits
Boot mode: Normal (Normal boot)
Total RAM: 6134 MB (37% free)
System Restore: Activé (Enable)
System drive C: has 28 GB (6%) free of 458 GB

---\\ Mode de connexion au système
~ Computer Name: PC-DE-BETTO
~ User Name: betto
~ All Users Names: UpdatusUser, betto, Administrateur,
~ Unselected Option: None
Logged in as Administrator

---\\ Variables d'environnement
~ System Unit : C:\
~ %AppZHP% : C:\Users\betto\AppData\Roaming\ZHP\
~ %AppData% : C:\Users\betto\AppData\Roaming\
~ %Desktop% : C:\Users\betto\Desktop\
~ %Favorites% : C:\Users\betto\Favorites\
~ %LocalAppData% : C:\Users\betto\AppData\Local\
~ %StartMenu% : C:\Users\betto\AppData\Roaming\Microsoft\Windows\Start Menu\
~ %Windir% : C:\Windows\
~ %System% : C:\Windows\System32\

---\\ Enumération des unités disques
C: Hard drive, Flash drive, Thumb drive (Free 28 Go of 458 Go)
D: Hard drive, Flash drive, Thumb drive (Free 47 Go of 458 Go)
E: CD-ROM drive (Not Inserted)
F: Floppy drive, Flash card reader, USB Key (Not Inserted)
G: Floppy drive, Flash card reader, USB Key (Not Inserted)
H: Floppy drive, Flash card reader, USB Key (Not Inserted)
I: Floppy drive, Flash card reader, USB Key (Not Inserted)
J: CD-ROM drive (Not Inserted)
K: CD-ROM drive (Not Inserted)



---\\ Etat du Centre de Sécurité Windows
[HKLM\SOFTWARE\Microsoft\Security Center\Svc] AntiSpywareOverride: OK
[HKLM\SOFTWARE\Microsoft\Security Center\Svc] AntiVirusOverride: OK
[HKLM\SOFTWARE\Microsoft\Security Center\Svc] FirewallOverride: OK
[HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\Explorer] NoActiveDesktopChanges: Modified
[HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\system] EnableLUA: OK
[HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Advanced\Folder\Hidden\NOHIDDEN] CheckedValue: OK
[HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Advanced\Folder\Hidden\SHOWALL] CheckedValue: OK
[HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Associations] Application: OK
[HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Winlogon] Shell: OK
[HKCU\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Windows] Load: OK
[HKLM\SYSTEM\CurrentControlSet\Services\COMSysApp] Type: OK
[HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\WindowsUpdate\Auto Update\Results\Install] LastSuccessTime : Out Of Date
~ Security Center: 47 Scanned in 00mn 00s



---\\ Recherche particulière de fichiers génériques
[MD5.6B08E54A451B3F95E4109DBA7E594270] - (.Microsoft Corporation - Explorateur Windows.) (.11/04/2009 - 08:10:17.) -- C:\Windows\Explorer.exe [3079168]
[MD5.117EA87DF785CA1B9D821F6F213DCE07] - (.Microsoft Corporation - Application de démarrage de Windows.) (.21/01/2008 - 03:50:23.) -- C:\Windows\System32\Wininit.exe [123904]
[MD5.E36CFB14E6C425C492630AD5392E031D] - (.Microsoft Corporation - Extensions Internet pour Win32.) (.14/01/2015 - 03:49:35.) -- C:\Windows\System32\wininet.dll [1392128]
[MD5.6D0773A3A65D28B663F334C90441D01A] - (.Microsoft Corporation - Application d'ouverture de session Windows.) (.11/04/2009 - 08:11:08.) -- C:\Windows\System32\Winlogon.exe [405504]
[MD5.E58A17E945593544C707423F9772EEA0] - (.Microsoft Corporation - Ancillary Function Driver for WinSock.) (.30/05/2014 - 08:10:50.) -- C:\Windows\system32\Drivers\AFD.sys [404992]
[MD5.E68D9B3A3905619732F7FE039466A623] - (.Microsoft Corporation - ATAPI IDE Miniport Driver.) (.11/04/2009 - 08:15:00.) -- C:\Windows\system32\Drivers\atapi.sys [20952]
[MD5.B4D787DB8D30793A4D4DF9FEED18F136] - (.Microsoft Corporation - CD-ROM File System Driver.) (.21/01/2008 - 03:50:39.) -- C:\Windows\system32\Drivers\Cdfs.sys [90624]
[MD5.C025AA69BE3D0D25C7A2E746EF6F94FC] - (.Microsoft Corporation - SCSI CD-ROM Driver.) (.11/04/2009 - 06:34:39.) -- C:\Windows\system32\Drivers\Cdrom.sys [79872]
[MD5.8B722BA35205C71E7951CDC4CDBADE19] - (.Microsoft Corporation - DFS Namespace Client Driver.) (.14/04/2011 - 16:14:19.) -- C:\Windows\system32\Drivers\DfsC.sys [97792]
[MD5.F942C5820205F2FB453243EDFEC82A3D] - (.Microsoft Corporation - High Definition Audio Bus Driver.) (.11/04/2009 - 06:39:41.) -- C:\Windows\system32\Drivers\HDAudBus.sys [948736]
[MD5.CBB597659A2713CE0C9CC20C88C7591F] - (.Microsoft Corporation - Pilote de port i8042.) (.21/01/2008 - 03:47:27.) -- C:\Windows\system32\Drivers\i8042prt.sys [64000]
[MD5.B7E6212F581EA5F6AB0C3A6CEEEB89BE] - (.Microsoft Corporation - IP Network Address Translator.) (.21/01/2008 - 03:48:45.) -- C:\Windows\system32\Drivers\IpNat.sys [115712]
[MD5.1485811B320FF8C7EDAD1CAEBB1C6C2B] - (.Microsoft Corporation - Windows NT SMB Minirdr.) (.29/04/2011 - 14:39:34.) -- C:\Windows\system32\Drivers\MRxSmb.sys [135680]
[MD5.FC2C792EBDDC8E28DF939D6A92C83D61] - (.Microsoft Corporation - MBT Transport driver.) (.11/04/2009 - 06:42:33.) -- C:\Windows\system32\Drivers\netBT.sys [248320]
[MD5.2ACCAA3C3C55370A32F17B3595E1A217] - (.Microsoft Corporation - Pilote du système de fichiers NT.) (.03/03/2013 - 20:13:14.) -- C:\Windows\system32\Drivers\ntfs.sys [1513320]
[MD5.AECD57F94C887F58919F307C35498EA0] - (.Microsoft Corporation - Pilote de port parallèle.) (.02/11/2006 - 10:37:57.) -- C:\Windows\system32\Drivers\Parport.sys [96768]
[MD5.AC7BC4D42A7E558718DFDEC599BBFC2C] - (.Microsoft Corporation - RAS L2TP mini-port/call-manager driver.) (.11/04/2009 - 06:43:38.) -- C:\Windows\system32\Drivers\Rasl2tp.sys [124928]
[MD5.C045D1FB111C28DF0D1BE8D4BDA22C06] - (.Microsoft Corporation - Microsoft RDP Device redirector.) (.21/01/2008 - 03:46:51.) -- C:\Windows\system32\Drivers\rdpdr.sys [314368]
[MD5.290B6F6A0EC4FCDFC90F5CB6D7020473] - (.Microsoft Corporation - SMB Transport driver.) (.11/04/2009 - 06:42:19.) -- C:\Windows\system32\Drivers\smb.sys [88064]
[MD5.458919C8C42E398DC4802178D5FFEE27] - (.Microsoft Corporation - TDI Translation Driver.) (.11/04/2009 - 06:43:00.) -- C:\Windows\system32\Drivers\tdx.sys [94720]
[MD5.582F710097B46140F5A89A19A6573D4B] - (.Microsoft Corporation - Pilote de cliché instantané du volume.) (.21/08/2012 - 12:50:57.) -- C:\Windows\system32\Drivers\volsnap.sys [267648]
~ Generic Processes: Scanned in 00mn 00s



---\\ Etat des fichiers cachés (Caché/Total)
~ Mes images (My Pictures) : 1/53
~ Mes musiques (My Musics) : 3/8
~ Mes Videos (My Videos) : 1/963
~ Mes Favoris (My Favorites) : 1/22
~ Mes Documents (My Documents) : 1/3171
~ Mon Bureau (My Desktop) : 5/3837
~ Menu demarrer (Programs) : 1/154
~ Hidden Files: Scanned in 00mn 01s



---\\ Processus lancés
[MD5.1E74C3EF30DB23A730751E0068E76ED4] - (.Winstep Software Technologies - NeXuS.) -- C:\Program Files (x86)\Winstep\Nexus.exe [16957056] [PID.2888]
[MD5.14D6542607ACD4B2D1DDB1A36E0D8813] - (.Oracle Corporation - Java(TM) Update Scheduler.) -- C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe [271744] [PID.3032]
[MD5.1891EEF1A57520E272AF39A56C9C6CB5] - (.Egis inc. - MSN Hook Loader (32 bit).) -- C:\Program Files (x86)\Acer\Empowering Technology\eDataSecurity\x86\eDSMSNLoader32.exe [454704] [PID.5692]
[MD5.6080A176D09435FC8E6E800996656E18] - (.Microsoft Corporation - Console IME.) -- C:\Windows\SysWOW64\conime.exe [69120] [PID.5784]
[MD5.E74EBC53E5F501F6CB8899C1E952AF7D] - (...) -- C:\ProgramData\8708eaaa-1c2b-4faa-8923-a6c9f88eeb0e\plugins\3\plugin.exe [477968] [PID.4904]
[MD5.BB69268B5F4277A1CFC36A237E27FD87] - (.Mozilla Corporation - Firefox.) -- C:\Program Files (x86)\Mozilla Firefox\firefox.exe [376944] [PID.3724]
[MD5.831F8FAE0BFFCF8BA05082E5C5DB8CB3] - (.Mozilla Corporation - Plugin Container for Firefox.) -- C:\Program Files (x86)\Mozilla Firefox\plugin-container.exe [267888] [PID.5140]
[MD5.66F6B3894132CC3D347CB85FBAE48D57] - (.Adobe Systems, Inc. - Adobe Flash Player 17.0 r0.) -- C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerPlugin_17_0_0_169.exe [1892528] [PID.600]
[MD5.3446EFE5B35A7478CA26932084F2E1C6] - (.Nicolas Coolman - ZHPDiag.) -- C:\Program Files (x86)\ZHPDiag\ZHPDiag.exe [8197120] [PID.7584]
[MD5.4B555106290BD117334E9A08761C035A] - (...) -- ysWOW64\rundll32.exe [0] [PID.2456]
[MD5.83BB030C71C9727DCFB2737005772C4E] - (.Google Inc. - Google Crash Handler.) -- C:\Program Files (x86)\Google\Update\1.3.26.9\GoogleCrashHandler.exe [232264] [PID.1872]
[MD5.517D30057C726C797764BFD70A55D82A] - (.CyberLink - CLMSServer.) -- C:\Program Files (x86)\Acer Arcade Live\Acer HomeMedia Connect\Kernel\DMS\CLMSServer.exe [269448] [PID.2180]
[MD5.62FF2C857C27683FEE84DDC368DFAD8F] - (.DC Corporation - Pas de description.) -- C:\Program Files (x86)\IGS\DCL.exe [2308280] [PID.2320]
[MD5.B1F2503E23425B386DF0F3413B2596F3] - (.Egis Incorporated - Acer eDataSecurity Management Service.) -- C:\Program Files (x86)\Acer\Empowering Technology\eDataSecurity\x86\eDSService.exe [500784] [PID.2640]
[MD5.D1AFCCBC2BC504F9F0C70B058EBE344B] - (.Infonaut - Infonaut Client Service.) -- C:\Program Files (x86)\Infonaut_1.10.0.14\Service\insvc.exe [278600] [PID.3532] =>PUP.Infonaut
[MD5.6E5DAC168D1FF9843E84A59D51D31107] - (.Hewlett-Packard Company - Pas de description.) -- C:\Program Files (x86)\Common Files\LightScribe\LSSrvc.exe [61440] [PID.3552]
[MD5.7D2633295EB6FF2B938185874884059D] - (.Nero AG - Nero BackItUp.) -- C:\Program Files (x86)\Common Files\Nero\Nero BackItUp 4\NBService.exe [935208] [PID.3672]
[MD5.58751F9248D50BCE1053976C9E2F0859] - (.NewTech Infosystems, Inc. - NTI Backup Now 5 SchedulerSvc NT Service.) -- C:\Program Files (x86)\NewTech Infosystems\NTI Backup Now 5\SchedulerSvc.exe [144632] [PID.3760]
[MD5.005E474630A7AA05A617C574B702FEED] - (.NVIDIA Corporation - NVIDIA Settings Update Manager.) -- C:\Program Files (x86)\NVIDIA Corporation\NVIDIA Update Core\daemonu.exe [2155296] [PID.3876]
[MD5.1A3D38CF98DE73A61A489DE21D8FA115] - (...) -- C:\Users\betto\AppData\Roaming\VOPackage\VOsrv.exe [142848] [PID.3044] =>Adware.Downware
[MD5.3120A421ED14B0186675E295219D441C] - (.PacketVideo - TwonkyMedia Server watchdog.) -- C:\Program Files (x86)\Serveur Media\twonkymediaserverwatchdog.exe [501336] [PID.4100]
[MD5.A4A2C025A8A2DFEACA3DFEA3A3AB6CC1] - (...) -- C:\ProgramData\8708eaaa-1c2b-4faa-8923-a6c9f88eeb0e\plugincontainer.exe [641296] [PID.4168]
[MD5.2748912E0E656AE1FB74C4BFDF7BC470] - (...) -- C:\Program Files (x86)\Serveur Media\TwonkyMediaServer.exe [1451608] [PID.4244]
[MD5.6CE2C1334A7E0423F4F14B69020940E3] - (.Weather Protector LLC - SW Updater Service.) -- C:\Program Files (x86)\StormWatch\SWUpdaterSvc.exe [17584] [PID.4680] =>PUP.StormWatch
[MD5.E37995D742607DAB8FAFA6ADC17FD568] - (...) -- C:\Program Files (x86)\Common Files\8708eaaa-1c2b-4faa-8923-a6c9f88eeb0e\updater.exe [561424] [PID.4048]
[MD5.91CEA4780943F57113594E02AC1A6837] - (...) -- C:\Program Files (x86)\WaNetworkEnhance\WaNetworkEnhance Internet Enhancer\InternetEnhancerService.exe [686592] [PID.1556]
[MD5.87F79BBE778B586F0FE74C8216E40502] - (.Winstep Software Technologies - Winstep Xtreme Helper Service.) -- C:\Program Files (x86)\Winstep\WsxService.exe [377344] [PID.4300]
[MD5.E7C2C8E09808B821B5D946F42C5BB946] - (...) -- C:\ProgramData\8708eaaa-1c2b-4faa-8923-a6c9f88eeb0e\plugins\2\plugin.exe [1227024] [PID.4904]
[MD5.9AC21D138B437C09A68BF5704527B9C8] - (...) -- C:\ProgramData\8708eaaa-1c2b-4faa-8923-a6c9f88eeb0e\plugins\4\plugin.exe [421648] [PID.4904]
[MD5.103CC05A1621B568B867CEE922E4DC55] - (...) -- C:\ProgramData\8708eaaa-1c2b-4faa-8923-a6c9f88eeb0e\plugins\5\plugin.exe [565520] [PID.4904]
[MD5.64BBB1E6808D21C3DFC334FF665D97C5] - (...) -- C:\Program Files (x86)\WaNetworkEnhance\WaNetworkEnhance Internet Enhancer\InternetEnhancer.exe [275968] [PID.3688]
[MD5.F5AEA5C2D683A3B5C92E1911886E9AC9] - (...) -- C:\Program Files (x86)\StormWatch\StormWatchSrv.exe [586264] [PID.4596] =>PUP.StormWatch
~ Processes Running: Scanned in 00mn 00s



---\\ Google Chrome, Démarrage,Recherche,Extensions (G0,G1,G2)
C:\Users\betto\AppData\Local\Google\Chrome\User Data\Default\Preferences

---\\ Liste des dossiers d'extension Google Chrome
G2 - EXT: C:\Users\betto\AppData\Local\Google\Chrome\User Data\Default\Extensions\aciahcmjmecflokailenpkdchphgkefd [__MSG_appName__]
G2 - EXT: C:\Users\betto\AppData\Local\Google\Chrome\User Data\Default\Extensions\elicpjhcidhpjomhibiffojpinpmmpil [__MSG_appName__]
G2 - EXT: C:\Users\betto\AppData\Local\Google\Chrome\User Data\Default\Extensions\gdkjifoifglkpcdffkenpinlbjgephlo [__MSG_name__]
G2 - EXT: C:\Users\betto\AppData\Local\Google\Chrome\User Data\Default\Extensions\gighmmpiobklfepjocnamgkkbiglidom [AdBlock]
G2 - EXT: C:\Users\betto\AppData\Local\Google\Chrome\User Data\Default\Extensions\lccekmodgklaepjeofjdjpbminllajkg [Chrome Hotword Shared Module]
G2 - EXT: C:\Users\betto\AppData\Local\Google\Chrome\User Data\Default\Extensions\lmkbjdibokaljcdpfagdcplpifjldken [Chrome Hotword Shared Module]
G2 - EXT: C:\Users\betto\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [__MSG_APP_NAME__]
G2 - EXT: C:\Users\betto\AppData\Local\Google\Chrome\User Data\Default\Extensions\opjonmehjfmkejjifhhknofdnacklmjk [__MSG_themeName__]
G2 - EXT: C:\Users\betto\AppData\Local\Google\Chrome\User Data\Default\Extensions\papbadoldddalgcjcicnikcfenodpghp [Cinema PlusV14.04] =>PUP.CrossRider
~ Google Lines Browser: 18 Scanned in 00mn 06s



---\\ Mozilla Firefox, Plugins,Demarrage,Recherche,Extensions (P2,M0,M1,M2,M3)
C:\Users\betto\AppData\Roaming\Mozilla\Firefox\Profiles\9zgyi6yv.default\prefs.js
M3 - MFPP: Plugins - [betto] -- C:\Users\betto\AppData\Roaming\Mozilla\Firefox\Profiles\9zgyi6yv.default\searchplugins\luckysearches.xml =>Hijacker.LuckySearches
M3 - MFPP: Plugins - [betto] -- C:\Users\betto\AppData\Roaming\Mozilla\Firefox\Profiles\9zgyi6yv.default\searchplugins\sweet-page.xml =>PUP.SweetPage
M3 - MFPP: Plugins - [betto] -- C:\Users\betto\AppData\Roaming\Mozilla\Firefox\Profiles\9zgyi6yv.default\searchplugins\trovi.xml
M2 - MFEP: RegExtension {58102098-601E-13CE-331B-C1AEDE02FD33} . (...) -- C:\Program Files (x86)\version36BlockAndSurf\192.xpi =>PUP.BlockAndSurf
M0 - MFSP: prefs.js [betto - 9zgyi6yv.default] http://www.google.fr
M2 - MFEP: prefs.js [betto - 9zgyi6yv.default\fr-dicollecte@dictionaries.addons.mozilla.org] [] Dictionnaires français v5.3 (..)
M2 - MFEP: prefs.js [betto - 9zgyi6yv.default\istart_ffnt@gmail.com] [] Istart v5.3 (..) =>PUP.Istart
M2 - MFEP: prefs.js [betto - 9zgyi6yv.default\quick_searchff@gmail.com] [] QuickSearch v5.3 (..)
M2 - MFEP: prefs.js [betto - 9zgyi6yv.default\searchengine@gmail.com] [] Search Enginer v1.0.0.1028 (..) =>PUP.SearchEngine
M2 - MFEP: Extension [betto - 9zgyi6yv.default] {a6472983-82c2-48e2-af83-11b7750b32b5}.xpi
M2 - MFEP: Extension [betto - 9zgyi6yv.default] {b9db16a4-6edc-47ec-a1f4-b86292ed211d}.xpi
M2 - MFEP: Extension [betto - 9zgyi6yv.default] {d10d0bf8-f5b5-c8b4-a8b2-2b9879e08c5d}.xpi =>.Adblock Plus Extension Mozilla Firefox
P2 - FPN:Firefox Plugin Navigator . (.Microsoft Corporation - np-mswmp.) -- C:\Program Files (x86)\Mozilla Firefox\Plugins\np-mswmp.dll
P2 - FPN:Firefox Plugin Navigator . (.Adobe Systems Inc. - Adobe PDF Plug-In For Firefox and Netscape "9.5.5".) -- C:\Program Files (x86)\Mozilla Firefox\Plugins\nppdf32.dll
P2 - FPN:Firefox Plugin Navigator . (.Zylom - Zylom Plugin.) -- C:\Program Files (x86)\Mozilla Firefox\Plugins\npzylomgamesplayer.dll
P2 - FPN: [HKLM] [@adobe.com/FlashPlayer] - (...) -- C:\Windows\system32\Macromed\Flash\NPSWF64_17_0_0_169.dll
P2 - FPN: [HKLM] [@videolan.org/vlc,version=2.0.7] - (.VideoLAN - VLC media player Web Plugin 2.0.6.) -- C:\Program Files\VideoLAN\VLC\npvlc.dll =>.VideoLAN
P2 - FPN: [HKLM] [adobe.com/AdobeAAMDetect] - (.Adobe Systems - A plugin to detect whether the Adobe Application Manager is installed.) -- C:\Program Files (x86)\Common Files\Adobe\OOBE\PDApp\CCM\Utilities\npAdobeAAMDetect64.dll
P2 - FPN: [HKCU] [@unity3d.com/UnityPlayer,version=1.0] - (.Unity Technologies ApS - Unity Player 4.3.5f1.) -- C:\Users\betto\AppData\LocalLow\Unity\WebPlayer\loader\npUnity3D32.dll
~ Firefox Browser: 22 Scanned in 00mn 00s



---\\ Internet Explorer, Démarrage,Recherche,URLSearchHook, Phishing (R0,R1,R3,R4)
R0 - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page = http://www.luckysearches.com =>Hijacker.LuckySearches
R0 - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page = http://www.luckysearches.com =>Hijacker.LuckySearches
R0 - HKCU\SOFTWARE\Classes\Software\Microsoft\Internet Explorer\Main,Start Page = http://www.bigseekpro.com
R0 - HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\Main,Start Page = http://www.luckysearches.com =>Hijacker.LuckySearches
R1 - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,Search Page = http://www.luckysearches.com =>Hijacker.LuckySearches
R1 - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,Default_Page_URL = http://www.luckysearches.com =>Hijacker.LuckySearches
R1 - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,Default_Search_URL = http://www.luckysearches.com =>Hijacker.LuckySearches
R1 - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,Search Bar = http://go.microsoft.com
R1 - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Search Page = www.google.com
R1 - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Default_Page_URL = http://www.luckysearches.com =>Hijacker.LuckySearches
R1 - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Extensions Off Page = about:noadd-ons
R1 - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Security Risk Page = about:securityrisk
R1 - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Default_Search_URL = www.google.com
R1 - HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\AboutURLs,Tabs = res://ieframe.dll/tabswelcome.htm
R1 - HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\Main,Search Page = http://www.luckysearches.com =>Hijacker.LuckySearches
R1 - HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\Main,Default_Page_URL = http://www.luckysearches.com =>Hijacker.LuckySearches
R1 - HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\Main,Default_Search_URL = http://www.luckysearches.com =>Hijacker.LuckySearches
R1 - HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\Main,Extensions Off Page = about:noadd-ons
R1 - HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\Main,Security Risk Page = about:securityrisk
~ IE Browser: 19 Scanned in 00mn 00s



---\\ Internet Explorer, Proxy Management (R5)
R5 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,ProxyOverride = <-loopback> =>Hijacker.Proxy
R5 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,ProxyServer = http=127.0.0.1:54105;https=127.0.0.1:54105 =>Hijacker.Proxy
R5 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,ProxyEnable = 1
R5 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,MigrateProxy = 1
R5 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,EnableHttp1_1 = 1
R5 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,AutoConfigProxy = wininet.dll
~ Proxy management: Scanned in 00mn 00s



---\\ Analyse des lignes F0, F1, F2, F3 - IniFiles, Autoloading programs
F2 - REG:system.ini: USERINIT=C:\Windows\system32\userinit.exe,
F2 - REG:system.ini: Shell=C:\Windows\explorer.exe
F2 - REG:system.ini: VMApplet=rundll32 shell32,Control_RunDLL "sysdm.cpl"
~ Keys: Scanned in 00mn 00s



---\\ Hosts file redirection (O1)
O1 - Hosts: 95.211.18.55 gks.gs
O1 - Hosts: 95.211.18.55 tk.gks.gs
~ Nombre lignes détournées 2/14514 (Hosts file redirected)
~ Hosts File: Scanned in 00mn 06s



---\\ Browser Helper Objects de navigateur (O2)
O2 - BHO: ShowBarObj Class [64Bits] - {83A2F9B1-01A2-4AA5-87D1-45B6B8505E96} . (.Egis - ActiveToolBand Module.) -- C:\Program Files (x86)\Acer\Empowering Technology\eDataSecurity\x64\ActiveToolBand.dll
O2 - BHO: BlockAndSurf [64Bits] - {8E65ED4A-DA5A-3D2F-EA44-34A830EADAAB} . (...) -- C:\Program Files (x86)\version36BlockAndSurf\192_x64.dll =>PUP.BlockAndSurf
O2 - BHO: Programme d'aide de l'Assistant de connexion Windows Live ID [64Bits] - {9030D464-4C02-4ABF-8ECC-5164760863C6} . (.Microsoft Corporation - Microsoft® Windows Live ID Login Helper.) -- C:\Program Files\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll
~ BHO: 6 Scanned in 00mn 00s



---\\ Internet Explorer Toolbars (O3)
O3 - Toolbar: Acer eDataSecurity Management - [HKLM]{5CBE3B7C-1E47-477e-A7DD-396DB0476E29} . (.Egis Incorporated. - Acer eDataSecurity Management Explorer Tool.) -- C:\Program Files (x86)\Acer\Empowering Technology\eDataSecurity\x64\eDStoolbar.dll
O3 - Toolbar\WebBrowser: (no name) - [HKCU]{2318C2B1-4965-11D4-9B18-009027A5CD4F} Clé orpheline
~ Toolbar: Scanned in 00mn 00s



---\\ Autres liens utilisateurs (O4)
O4 - GS\QuickLaunch [betto]: µTorrent.lnk . (.BitTorrent Inc. - µTorrent.) -- C:\Users\betto\AppData\Roaming\uTorrent\uTorrent.exe =>P2P.BitTorrent
~ Global Startup: 1 Scanned in 00mn 01s



---\\ Applications lancées au démarrage du système (O4)
O4 - HKLM\..\Run: [RtHDVCpl] . (.Realtek Semiconductor - HD Audio Control Panel.) -- C:\Windows\RAVCpl64.exe =>.Realtek Semiconductor Corp
O4 - HKLM\..\Run: [Acer Empowering Technology Monitor] . (...) -- C:\Program Files\Acer\Empowering Technology\SysMonitor.exe
O4 - HKLM\..\Run: [EmpoweringTechnology] . (.Pas de propriétaire - Acer Empowering Technology Framework Launch.) -- C:\Program Files\Acer\Empowering Technology\Framework.Launcher.exe
O4 - HKLM\..\Run: [eDataSecurity Loader] . (.Egis Incorporated - Acer eDataSecurity Management Loader.) -- C:\Program Files (x86)\Acer\Empowering Technology\eDataSecurity\x64\eDSloader.exe
O4 - HKLM\..\Run: [MSC] . (.Microsoft Corporation - Microsoft Security Client User Interface.) -- C:\Program Files\Microsoft Security Client\msseces.exe
O4 - HKCU\..\Run: [AdobeBridge] Clé orpheline
O4 - HKCU\..\Run: [NeXuS] . (.Winstep Software Technologies - NeXuS.) -- C:\Program Files (x86)\Winstep\Nexus.exe
O4 - HKCU\..\Run: [uTorrent] . (.BitTorrent Inc. - µTorrent.) -- C:\Program Files (x86)\uTorrent\uTorrent.exe =>P2P.BitTorrent
O4 - HKLM\..\Wow6432Node\Run: [eRecoveryService] Clé orpheline
O4 - HKLM\..\Wow6432Node\Run: [NPSStartup] Clé orpheline
O4 - HKLM\..\Wow6432Node\Run: [StartCCC] . (.Advanced Micro Devices, Inc. - Catalyst® Control Center Launcher.) -- C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\CLIStart.exe =>.Advanced Micro Devices, Inc
O4 - HKLM\..\Wow6432Node\Run: [Adobe Reader Speed Launcher] . (.Adobe Systems Incorporated - Adobe Acrobat SpeedLauncher.) -- C:\Program Files (x86)\Adobe\Reader 9.0\Reader\Reader_sl.exe
O4 - HKLM\..\Wow6432Node\Run: [Adobe ARM] . (.Adobe Systems Incorporated - Adobe Reader and Acrobat Manager.) -- C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe =>.Adobe Systems Incorporated
O4 - HKLM\..\Wow6432Node\Run: [SunJavaUpdateSched] . (.Oracle Corporation - Java(TM) Update Scheduler.) -- C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe =>.Oracle Corporation
O4 - HKUS\S-1-5-19\..\Run: [Sidebar] . (.Microsoft Corporation - Volet Windows.) -- C:\Program Files (x86)\Windows Sidebar\Sidebar.exe =>.Microsoft Corporation
O4 - HKUS\S-1-5-19\..\Run: [WindowsWelcomeCenter] rundll32.exe oobefldr.dll,ShowWelcomeCenter
O4 - HKUS\S-1-5-20\..\Run: [Sidebar] . (.Microsoft Corporation - Volet Windows.) -- C:\Program Files (x86)\Windows Sidebar\Sidebar.exe =>.Microsoft Corporation
O4 - HKUS\S-1-5-20\..\Run: [WindowsWelcomeCenter] rundll32.exe oobefldr.dll,ShowWelcomeCenter
O4 - HKUS\S-1-5-21-1403743995-4018011135-4141274091-1000\..\Run: [AdobeBridge] Clé orpheline
O4 - HKUS\S-1-5-21-1403743995-4018011135-4141274091-1000\..\Run: [NeXuS] . (.Winstep Software Technologies - NeXuS.) -- C:\Program Files (x86)\Winstep\Nexus.exe
O4 - HKUS\S-1-5-21-1403743995-4018011135-4141274091-1000\..\Run: [uTorrent] . (.BitTorrent Inc. - µTorrent.) -- C:\Program Files (x86)\uTorrent\uTorrent.exe =>P2P.BitTorrent
~ Application: Scanned in 00mn 00s



---\\ Winsock hijacker (Layered Service Provider) (O10)
O10 - WLSP:\000000000001\Winsock LSP File . (.Microsoft Corporation - Network Location Awareness 2.) -- C:\Windows\system32\NLAapi.dll
O10 - WLSP:\000000000002\Winsock LSP File . (.Microsoft Corporation - Fournisseur Shim d'affectation de noms de messagerie.) -- C:\Windows\system32\napinsp.dll
O10 - WLSP:\000000000003\Winsock LSP File . (.Microsoft Corporation - Fournisseur d’espace de noms PNRP.) -- C:\Windows\system32\pnrpnsp.dll
O10 - WLSP:\000000000004\Winsock LSP File . (.Microsoft Corporation - Fournisseur d’espace de noms PNRP.) -- C:\Windows\system32\pnrpnsp.dll
O10 - WLSP:\000000000005\Winsock LSP File . (.Microsoft Corporation - Fournisseur de service Sockets 2.0 de Microsoft Windows.) -- C:\Windows\system32\mswsock.dll =>.Microsoft Corporation
O10 - WLSP:\000000000006\Winsock LSP File . (.Microsoft Corporation - LDAP RnR Provider DLL.) -- C:\Windows\system32\winrnr.dll
O10 - WLSP:\000000000007\Winsock LSP File . (.Apple Inc. - Bonjour Namespace Provider.) -- C:\Program Files (x86)\Bonjour\mdnsNSP.dll
~ Winsock: 7 Scanned in 00mn 00s



---\\ Site dans la Zone de confiance d'Internet Explorer (O15)
O15 - Trusted Zone: [HKCU\...\Domains] http.mappy.com
~ IE Zone Confiance: Scanned in 00mn 01s



---\\ Modification Domaine/Adresses DNS (O17)
O17 - HKLM\System\CCS\Services\Tcpip\..\{59810A84-C4D9-4CA5-AA84-6705F2B0ED3C}: NameServer = 8.8.4.4,8.8.8.8,192.168.1.1 =>.Google DNS Redirections
O17 - HKLM\System\CS1\Services\Tcpip\..\{59810A84-C4D9-4CA5-AA84-6705F2B0ED3C}: NameServer = 8.8.4.4,8.8.8.8,192.168.1.1 =>.Google DNS Redirections
O17 - HKLM\System\CS3\Services\Tcpip\..\{59810A84-C4D9-4CA5-AA84-6705F2B0ED3C}: NameServer = 8.8.4.4,8.8.8.8,192.168.1.1 =>.Google DNS Redirections
~ Domain: Scanned in 00mn 00s



---\\ Protocole additionnel (O18)
O18 - Handler: wlmailhtml [64Bits] - {03C514A3-1EFB-4856-9F99-10D7BE1653C0} . (...) --
O18 - Filter: text/xml [64Bits] - {807563E5-5146-11D5-A672-00B0D022E945} . (.Microsoft Corporation - Microsoft Office XML MIME Filter.) -- C:\Program Files\Common Files\Microsoft Shared\OFFICE12\MSOXMLMF.dll =>.Microsoft Corporation
~ Protocole Additionnel: Scanned in 00mn 00s



---\\ Clé de Registre autorun ShellServiceObjectDelayLoad (SSO/SSODL) (O21)
O21 - SSODL: WebCheck - {E6FB5E20-DE35-11CF-9C87-00AA005127ED} . (.Microsoft Corporation - Contrôleur de site Web.) -- C:\Windows\System32\webcheck.dll
~ SSODL: 1 Scanned in 00mn 00s



---\\ Clé de Registre autorun SharedTaskScheduler (STS) (O22)
O22 - SharedTaskScheduler: Component Categories cache daemon [64Bits] - {8C7461EF-2B13-11d2-BE35-3078302C2030} . (.Microsoft Corporation - Bibliothèque de l'interface utilisateur du.) -- C:\Windows\System32\browseui.dll
~ STS/SSO: Scanned in 00mn 00s



---\\ Liste des services NT non Microsoft et non désactivés (O23)
O23 - Service: OptimizerPro Monitoring (5d9df4c6) . (...) - c:\Program Files (x86)\Optimizer Pro 3.79\OptProMon.dll =>PUP.OptimizerPro
O23 - Service: Acer HomeMedia Connect Service (Acer HomeMedia Connect Service) . (.CyberLink - CLMSServer.) - C:\Program Files (x86)\Acer Arcade Live\Acer HomeMedia Connect\Kernel\DMS\CLMSServer.exe
O23 - Service: Service Bonjour (Bonjour Service) . (.Apple Inc. - Bonjour Service.) - C:\Program Files\Bonjour\mDNSResponder.exe
O23 - Service: DCL (DCL) . (.DC Corporation - Pas de description.) - C:\Program Files (x86)\IGS\DCL.exe
O23 - Service: eDataSecurity Service (eDataSecurity Service) . (.Egis Incorporated - Acer eDataSecurity Management Service.) - C:\Program Files (x86)\Acer\Empowering Technology\eDataSecurity\x86\eDSService.exe
O23 - Service: Empowering Technology Service (ETService) . (.Pas de propriétaire - Acer Empowering Technology Framework Servic.) - C:\Program Files\Acer\Empowering Technology\Service\ETService.exe
O23 - Service: globalUpdate Update Service (globalUpdate) (globalUpdate) . (.globalUpdate - globalUpdate Update.) - C:\Program Files (x86)\globalUpdate\Update\GoogleUpdate.exe =>PUP.GlobalUpdate
O23 - Service: Service Google Update (gupdate) (gupdate) . (.Google Inc. - Programme d'installation de Google.) - C:\Program Files (x86)\Google\Update\GoogleUpdate.exe =>.Google Inc
O23 - Service: IHProtect Service (IHProtect Service) . (...) - C:\Program Files (x86)\XTab\ProtectService.exe =>Adware.AgentODR
O23 - Service: Infonaut 1.10.0.14 Client Service (insvc_1.10.0.14) . (.Infonaut - Infonaut Client Service.) - C:\Program Files (x86)\Infonaut_1.10.0.14\Service\insvc.exe =>PUP.Infonaut
O23 - Service: LightScribeService Direct Disc Labeling Service (LightScribeService) . (.Hewlett-Packard Company - Pas de description.) - C:\Program Files (x86)\Common Files\LightScribe\LSSrvc.exe
O23 - Service: (MBAMScheduler) . (.Malwarebytes Corporation - Malwarebytes Anti-Malware.) - C:\Program Files (x86)\Malwarebytes Anti-Malware\mbamscheduler.exe
O23 - Service: (MBAMService) . (.Malwarebytes Corporation - Malwarebytes Anti-Malware.) - C:\Program Files (x86)\Malwarebytes Anti-Malware\mbamservice.exe
O23 - Service: Nero BackItUp Scheduler 4.0 (Nero BackItUp Scheduler 4.0) . (.Nero AG - Nero BackItUp.) - C:\Program Files (x86)\Common Files\Nero\Nero BackItUp 4\NBService.exe
O23 - Service: NTI Backup Now 5 Scheduler Service (NTISchedulerSvc) . (.NewTech Infosystems, Inc. - NTI Backup Now 5 SchedulerSvc NT Service.) - C:\Program Files (x86)\NewTech Infosystems\NTI Backup Now 5\SchedulerSvc.exe
O23 - Service: NVIDIA Display Driver Service (nvsvc) . (.NVIDIA Corporation - NVIDIA Driver Helper Service, Version 337.8.) - C:\Windows\system32\nvvsvc.exe
O23 - Service: NVIDIA Update Service Daemon (nvUpdatusService) . (.NVIDIA Corporation - NVIDIA Settings Update Manager.) - C:\Program Files (x86)\NVIDIA Corporation\NVIDIA Update Core\daemonu.exe
O23 - Service: Online Games Manager (ogmservice) . (.RealNetworks, Inc. - Online Games Manager.) - C:\Program Files (x86)\Online Games Manager\ogmservice.exe
O23 - Service: Orange update Core Service (Orange update Core Service) . (.Orange SA - Orange Upd@te.) - C:\Program Files (x86)\Orange\OrangeUpdate\Service\OUCore.exe
O23 - Service: Uniform Resource Locator Burn (pylymezy) . (...) - C:\Users\betto\AppData\Roaming\VOPackage\VOsrv.exe =>Adware.Downware
O23 - Service: Registry Helper Service (Registry Helper Service) . (.SafeApp Software, LLC - Registry Helper Service.) - C:\Program Files (x86)\Registry Helper\RegistryHelperService.exe =>PUP.RegistryHelper
O23 - Service: Cyberlink RichVideo Service(CRVS) (RichVideo) . (.Pas de propriétaire - RichVideo Module.) - C:\Program Files (x86)\CyberLink\Shared Files\RichVideo.exe
O23 - Service: Serveur Média (Serveur Média) . (.PacketVideo - TwonkyMedia Server watchdog.) - C:\Program Files (x86)\Serveur Media\twonkymediaserverwatchdog.exe
O23 - Service: Service Mgr DigitalMore (Service Mgr DigitalMore) . (...) - C:\ProgramData\8708eaaa-1c2b-4faa-8923-a6c9f88eeb0e\plugincontainer.exe =>PUP.DigitalMore
O23 - Service: Skype Updater (SkypeUpdate) . (.Skype Technologies - Skype Updater Service.) - C:\Program Files (x86)\Skype\Updater\Updater.exe
O23 - Service: StormWatch Update Service (StormWatch Update Service) . (...) - C:\Program Files (x86)\StormWatch\StormWatchSrv.exe =>PUP.StormWatch
O23 - Service: SWUpdaterSvc (SWUpdater) . (.Weather Protector LLC - SW Updater Service.) - C:\Program Files (x86)\StormWatch\SWUpdaterSvc.exe =>PUP.StormWatch
O23 - Service: Update Mgr DigitalMore (Update Mgr DigitalMore) . (...) - C:\Program Files (x86)\Common Files\8708eaaa-1c2b-4faa-8923-a6c9f88eeb0e\updater.exe =>PUP.DigitalMore
O23 - Service: WaNetworkEnhance Service (WaNetworkEnhance Service) . (...) - C:\Program Files (x86)\WaNetworkEnhance\WaNetworkEnhance Internet Enhancer\InternetEnhancerService.exe
O23 - Service: WindowsMangerProtect Service (WindowsMangerProtect) . (...) - C:\ProgramData\WindowsMangerProtect\ProtectWindowsManager.exe =>PUP.Fuyu
~ Services: 30 Scanned in 00mn 03s



---\\ Enumération Active Desktop & MHTML Editor (O24)
O24 - Default MHTML Editor: Last - .(...) - (.not file.)
~ Desktop Component: 4 Scanned in 00mn 00s



---\\ Enumère les données de BootExecute (BEX) (O34)
O34 - HKLM BootExecute: (autocheck autochk *) - File not found
~ BEX: 1 Scanned in 00mn 00s



---\\ Tâches planifiées en automatique (O39)
[MD5.00000000000000000000000000000000] [APT] [678a7185-5455-440b-b575-a67817b3d169-1-6] (...) -- C:\Program Files (x86)\Cinema PlusV14.04\678a7185-5455-440b-b575-a67817b3d169-1-6.exe (.not file.) [0] =>PUP.CrossRider
[MD5.5577053C0F9A06BFE742DEC28AF00F08] [APT] [678a7185-5455-440b-b575-a67817b3d169-1-7] (.Cinema PlusV14.04.) -- C:\Program Files (x86)\Cinema PlusV14.04\678a7185-5455-440b-b575-a67817b3d169-1-7.exe [1067520] =>PUP.CrossRider
[MD5.00000000000000000000000000000000] [APT] [678a7185-5455-440b-b575-a67817b3d169-10_user] (...) -- C:\Program Files (x86)\Cinema PlusV14.04-ntf\678a7185-5455-440b-b575-a67817b3d169-10.exe (.not file.) [0] =>PUP.CrossRider
[MD5.994627FB684635C1B2830016748846A7] [APT] [678a7185-5455-440b-b575-a67817b3d169-3] (.Cinema PlusV14.04.) -- C:\Program Files (x86)\Cinema PlusV14.04\678a7185-5455-440b-b575-a67817b3d169-3.exe [1858048] =>PUP.CrossRider
[MD5.6F4ECDBEB3D751DB1D45FE1A2F208213] [APT] [678a7185-5455-440b-b575-a67817b3d169-4] (.Cinema PlusV14.04.) -- C:\Program Files (x86)\Cinema PlusV14.04\678a7185-5455-440b-b575-a67817b3d169-4.exe [1465856] =>PUP.CrossRider
[MD5.9ADC1DD50A0936F457118B50D02F0D9A] [APT] [678a7185-5455-440b-b575-a67817b3d169-5] (.Cinema PlusV14.04.) -- C:\Program Files (x86)\Cinema PlusV14.04\678a7185-5455-440b-b575-a67817b3d169-5.exe [1005056] =>PUP.CrossRider
[MD5.9ADC1DD50A0936F457118B50D02F0D9A] [APT] [678a7185-5455-440b-b575-a67817b3d169-5_user] (.Cinema PlusV14.04.) -- C:\Program Files (x86)\Cinema PlusV14.04\678a7185-5455-440b-b575-a67817b3d169-5.exe [1005056] =>PUP.CrossRider
[MD5.00000000000000000000000000000000] [APT] [678a7185-5455-440b-b575-a67817b3d169-6] (...) -- C:\Program Files (x86)\Cinema PlusV14.04\678a7185-5455-440b-b575-a67817b3d169-6.exe (.not file.) [0] =>PUP.CrossRider
[MD5.5577053C0F9A06BFE742DEC28AF00F08] [APT] [678a7185-5455-440b-b575-a67817b3d169-7] (.Cinema PlusV14.04.) -- C:\Program Files (x86)\Cinema PlusV14.04\678a7185-5455-440b-b575-a67817b3d169-7.exe [1067520] =>PUP.CrossRider
[MD5.994627FB684635C1B2830016748846A7] [APT] [ACXWGNVQ] (.Cinema PlusV14.04.) -- C:\Users\betto\AppData\Roaming\ACXWGNVQ.exe [1858048] =>PUP.CrossRider
[MD5.00000000000000000000000000000000] [APT] [Ad-Aware Update (Weekly)] (...) -- C:\Program Files (x86)\Lavasoft\Ad-Aware\Ad-AwareAdmin.exe (.not file.) [0]
[MD5.B04A4810C6CC205F9DC72DC22E4AB236] [APT] [Adobe Flash Player Updater] (.Adobe Systems Incorporated.) -- C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe [268464]
[MD5.320681DF28D82CDCA7E3EED0846625DB] [APT] [AdobeAAMUpdater-1.0-PC-de-betto-betto] (.Adobe Systems Incorporated.) -- C:\Program Files (x86)\Common Files\Adobe\OOBE\PDApp\UWA\UpdaterStartupUtility.exe [444904]
[MD5.C0A523DA22721DBA1C53564404AF05F4] [APT] [Advanced~System Protector_startup] (...) -- C:\Program Files (x86)\ASP\AdvancedSystemProtector.exe [6969128] =>PUP.AdvancedSystemProtector
[MD5.2691439FAC40F46C937BB684A3AE2E0F] [APT] [APSnotifierPP1] (.AnyProtect.com.) -- C:\Program Files (x86)\AnyProtectEx\AnyProtect.exe [6434816] =>PUP.AnyProtect
[MD5.2691439FAC40F46C937BB684A3AE2E0F] [APT] [APSnotifierPP2] (.AnyProtect.com.) -- C:\Program Files (x86)\AnyProtectEx\AnyProtect.exe [6434816] =>PUP.AnyProtect
[MD5.2691439FAC40F46C937BB684A3AE2E0F] [APT] [APSnotifierPP3] (.AnyProtect.com.) -- C:\Program Files (x86)\AnyProtectEx\AnyProtect.exe [6434816] =>PUP.AnyProtect
[MD5.00000000000000000000000000000000] [APT] [BlockAndSurf Update] (...) -- C:\Program Files (x86)\version36BlockAndSurf\J4BlockAndSurfJ52.exe (.not file.) [0] =>PUP.BlockAndSurf
[MD5.9A1F3AEA8D61AA67D90F1B336C00984E] [APT] [CCleanerSkipUAC] (.Piriform Ltd.) -- C:\Program Files (x86)\CCleaner\CCleaner.exe [5496600]
[MD5.D858BA2EE718B1DB1CED20646E641D08] [APT] [globalUpdateUpdateTaskMachineCore] (.globalUpdate.) -- C:\Program Files (x86)\globalUpdate\Update\GoogleUpdate.exe [68608] =>PUP.GlobalUpdate
[MD5.D858BA2EE718B1DB1CED20646E641D08] [APT] [globalUpdateUpdateTaskMachineUA] (.globalUpdate.) -- C:\Program Files (x86)\globalUpdate\Update\GoogleUpdate.exe [68608] =>PUP.GlobalUpdate
[MD5.51508F0C2476177E50C31B0BBFBF1BDB] [APT] [GoogleUpdateTaskMachineCore] (.Google Inc..) -- C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [107912]
[MD5.51508F0C2476177E50C31B0BBFBF1BDB] [APT] [GoogleUpdateTaskMachineUA] (.Google Inc..) -- C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [107912]
[MD5.7743B4251557F16B81DE99001F97A0F7] [APT] [HP Photo Creations Communicator] (...) -- C:\ProgramData\HP Photo Creations\MessageCheck.exe [166056]
[MD5.910DEA01032502D067FCF1B5571EC406] [APT] [Optimizer Pro Schedule] (...) -- C:\Program Files (x86)\Optimizer Pro 3.79\OptProLauncher.exe [148008] =>PUP.OptimizerPro
[MD5.00000000000000000000000000000000] [APT] [PYSAL] (...) -- C:\Users\betto\AppData\Roaming\PYSAL.exe (.not file.) [0]
[MD5.E547B124E91CFB267603B16804C6932F] [APT] [RegClean Pro] (...) -- C:\Program Files (x86)\RCP\RegCleanPro.exe [8732952] =>Rogue.RegistryPowerCleaner
[MD5.E547B124E91CFB267603B16804C6932F] [APT] [RegClean Pro_DEFAULT] (...) -- C:\Program Files (x86)\RCP\RegCleanPro.exe [8732952] =>Rogue.RegistryPowerCleaner
[MD5.E547B124E91CFB267603B16804C6932F] [APT] [RegClean Pro_UPDATES] (...) -- C:\Program Files (x86)\RCP\RegCleanPro.exe [8732952] =>Rogue.RegistryPowerCleaner
[MD5.CCA7F0B3ABD4E3B854B2D45FC021453B] [APT] [SmartWeb Upgrade Trigger Task] (...) -- C:\Users\betto\AppData\Local\SmartWeb\SmartWebHelper.exe [270368] =>PUP.SmartWeb
[MD5.00000000000000000000000000000000] [APT] [{09E9D9F9-26E1-49C9-B7E9-7A36ABD2CFA4}] (...) -- C:\Users\betto\Desktop\epson31778eu.exe (.not file.) [0]
[MD5.00000000000000000000000000000000] [APT] [{49784D1F-0912-4ADB-9BAE-766457ACA2BD}] (...) -- C:\Users\betto\AppData\Roaming\sweet-page\UninstallManager.exe (.not file.) [0] =>PUP.SweetPage
[MD5.00000000000000000000000000000000] [APT] [{4DF134D2-8A6A-4FDD-B940-8E66ACCEF0D7}] (...) -- C:\Users\betto\Desktop\RECEPTION\gods.vs.humans.v1.0.multi5.full-THETA\Gods vs. Humans.exe (.not file.) [0]
[MD5.00000000000000000000000000000000] [APT] [{593737DF-7CC6-4FC4-8084-3E1352C057C3}] (...) -- J:\SETUP.exe (.not file.) [0]
[MD5.00000000000000000000000000000000] [APT] [{5DD120E5-A5FD-4EC0-9814-623844B40E1A}] (...) -- J:\steambackup.exe (.not file.) [0]
[MD5.00000000000000000000000000000000] [APT] [{5E1B4089-45F7-43EC-8C91-C69CEE0EA050}] (...) -- C:\Users\betto\Desktop\RECEPTION\Doc.Clock.The.Toasted.Sandwich.of.Time.v1.0.Cracked-F4CG(3)\Doc.Clock.The.Toasted.Sandwich.of.Time.v1.0.Cracked-F4CG\setup-doc-clock.exe (.not file.) [0]
[MD5.00000000000000000000000000000000] [APT] [{61A85E9D-1696-4B2E-B20E-A6A010F2209D}] (...) -- C:\Users\betto\Desktop\RECEPTION\Monster_Trucks_Nitro_v1.31\Monster Trucks Nitro v1.31\Monster Trucks Nitro.exe (.not file.) [0]
[MD5.00000000000000000000000000000000] [APT] [{931FCEBD-2510-47F1-9DFB-9983AE043893}] (...) -- C:\Program Files (x86)\Delta\delta\1.8.10.0\GUninstaller.exe (.not file.) [0]
[MD5.00000000000000000000000000000000] [APT] [{B8C16591-EE68-49D6-B302-B1D7233B4F9D}] (...) -- J:\SETUP.exe (.not file.) [0]
[MD5.00000000000000000000000000000000] [APT] [{BDBE9441-3001-435B-8C78-0C29896164DE}] (...) -- C:\Users\betto\Desktop\RECEPTION\Gish.v1.6.full-THETA\Gish.v1.6.full-THETA\Gish.v1.6.full-THETA\Gish.exe (.not file.) [0]
[MD5.00000000000000000000000000000000] [APT] [{BEF9BB51-86D9-4DFC-81BA-AD2DAD58D286}] (...) -- C:\Users\betto\Desktop\RECEPTION\Windosill.v1.0.cracked-THETA\Windosill v1.0 (by Vectorpark)\Windosill.exe (.not file.) [0]
[MD5.00000000000000000000000000000000] [APT] [{C4539F02-9E08-4E70-9955-BA68F76B7792}] (...) -- C:\Users\betto\Desktop\RECEPTION\The.Ball.v1.0.multi9.cracked-THETA_Epidemz.net_Wargos.net\The.Ball.v1.0.multi9.cracked-THETA_Epidemz.net_Wargos.net\The Ball.exe (.not file.) [0]
[MD5.00000000000000000000000000000000] [APT] [{DB4F4308-14AD-4F30-9C46-6F108329B056}] (...) -- C:\Users\betto\Desktop\JEUX EN ATTENTE\bobsj by darko\setup.exe (.not file.) [0]
O39 - APT: 678a7185-5455-440b-b575-a67817b3d169-1-6 - (...) -- C:\Windows\Tasks\678a7185-5455-440b-b575-a67817b3d169-1-6.job [3130]
O39 - APT: 678a7185-5455-440b-b575-a67817b3d169-1-6 - (...) -- C:\Windows\System32\Tasks\678a7185-5455-440b-b575-a67817b3d169-1-6 [3130]
O39 - APT: 678a7185-5455-440b-b575-a67817b3d169-1-7 - (.Cinema PlusV14.04.) -- C:\Windows\Tasks\678a7185-5455-440b-b575-a67817b3d169-1-7.job [3466] =>PUP.CrossRider
O39 - APT: 678a7185-5455-440b-b575-a67817b3d169-1-7 - (.Cinema PlusV14.04.) -- C:\Windows\System32\Tasks\678a7185-5455-440b-b575-a67817b3d169-1-7 [3466] =>PUP.CrossRider
O39 - APT: 678a7185-5455-440b-b575-a67817b3d169-10_user - (...) -- C:\Windows\Tasks\678a7185-5455-440b-b575-a67817b3d169-10_user.job [2112]
O39 - APT: 678a7185-5455-440b-b575-a67817b3d169-10_user - (...) -- C:\Windows\System32\Tasks\678a7185-5455-440b-b575-a67817b3d169-10_user [2112]
O39 - APT: 678a7185-5455-440b-b575-a67817b3d169-3 - (.Cinema PlusV14.04.) -- C:\Windows\Tasks\678a7185-5455-440b-b575-a67817b3d169-3.job [4486] =>PUP.CrossRider
O39 - APT: 678a7185-5455-440b-b575-a67817b3d169-3 - (.Cinema PlusV14.04.) -- C:\Windows\System32\Tasks\678a7185-5455-440b-b575-a67817b3d169-3 [4486] =>PUP.CrossRider
O39 - APT: 678a7185-5455-440b-b575-a67817b3d169-4 - (.Cinema PlusV14.04.) -- C:\Windows\Tasks\678a7185-5455-440b-b575-a67817b3d169-4.job [4486] =>PUP.CrossRider
O39 - APT: 678a7185-5455-440b-b575-a67817b3d169-4 - (.Cinema PlusV14.04.) -- C:\Windows\System32\Tasks\678a7185-5455-440b-b575-a67817b3d169-4 [4486] =>PUP.CrossRider
O39 - APT: 678a7185-5455-440b-b575-a67817b3d169-5 - (.Cinema PlusV14.04.) -- C:\Windows\Tasks\678a7185-5455-440b-b575-a67817b3d169-5.job [2438] =>PUP.CrossRider
O39 - APT: 678a7185-5455-440b-b575-a67817b3d169-5 - (.Cinema PlusV14.04.) -- C:\Windows\System32\Tasks\678a7185-5455-440b-b575-a67817b3d169-5 [2438] =>PUP.CrossRider
O39 - APT: 678a7185-5455-440b-b575-a67817b3d169-5_user - (.Cinema PlusV14.04.) -- C:\Windows\Tasks\678a7185-5455-440b-b575-a67817b3d169-5_user.job [2438] =>PUP.CrossRider
O39 - APT: 678a7185-5455-440b-b575-a67817b3d169-5_user - (.Cinema PlusV14.04.) -- C:\Windows\System32\Tasks\678a7185-5455-440b-b575-a67817b3d169-5_user [2438] =>PUP.CrossRider
O39 - APT: 678a7185-5455-440b-b575-a67817b3d169-6 - (...) -- C:\Windows\Tasks\678a7185-5455-440b-b575-a67817b3d169-6.job [5510] =>PUP.CrossRider
O39 - APT: 678a7185-5455-440b-b575-a67817b3d169-6 - (...) -- C:\Windows\System32\Tasks\678a7185-5455-440b-b575-a67817b3d169-6 [5510] =>PUP.CrossRider
O39 - APT: 678a7185-5455-440b-b575-a67817b3d169-7 - (.Cinema PlusV14.04.) -- C:\Windows\Tasks\678a7185-5455-440b-b575-a67817b3d169-7.job [5510] =>PUP.CrossRider
O39 - APT: 678a7185-5455-440b-b575-a67817b3d169-7 - (.Cinema PlusV14.04.) -- C:\Windows\System32\Tasks\678a7185-5455-440b-b575-a67817b3d169-7 [5510] =>PUP.CrossRider
O39 - APT: ACXWGNVQ - (.Cinema PlusV14.04.) -- C:\Windows\Tasks\ACXWGNVQ.job [1686] =>PUP.CrossRider
O39 - APT: ACXWGNVQ - (.Cinema PlusV14.04.) -- C:\Windows\System32\Tasks\ACXWGNVQ [1686] =>PUP.CrossRider
O39 - APT: Adobe Flash Player Updater - (.Adobe Systems Incorporated.) -- C:\Windows\Tasks\Adobe Flash Player Updater.job [1002]
O39 - APT: Adobe Flash Player Updater - (.Adobe Systems Incorporated.) -- C:\Windows\System32\Tasks\Adobe Flash Player Updater [1002]
O39 - APT: APSnotifierPP1 - (.AnyProtect.com.) -- C:\Windows\Tasks\APSnotifierPP1.job [378] =>PUP.AnyProtect
O39 - APT: APSnotifierPP1 - (.AnyProtect.com.) -- C:\Windows\System32\Tasks\APSnotifierPP1 [378] =>PUP.AnyProtect
O39 - APT: APSnotifierPP2 - (.AnyProtect.com.) -- C:\Windows\Tasks\APSnotifierPP2.job [376] =>PUP.AnyProtect
O39 - APT: APSnotifierPP2 - (.AnyProtect.com.) -- C:\Windows\System32\Tasks\APSnotifierPP2 [376] =>PUP.AnyProtect
O39 - APT: APSnotifierPP3 - (.AnyProtect.com.) -- C:\Windows\Tasks\APSnotifierPP3.job [376] =>PUP.AnyProtect
O39 - APT: APSnotifierPP3 - (.AnyProtect.com.) -- C:\Windows\System32\Tasks\APSnotifierPP3 [376] =>PUP.AnyProtect
O39 - APT: BlockAndSurf Update - (...) -- C:\Windows\Tasks\BlockAndSurf Update.job [444] =>PUP.BlockAndSurf
O39 - APT: BlockAndSurf Update - (...) -- C:\Windows\System32\Tasks\BlockAndSurf Update [444] =>PUP.BlockAndSurf
O39 - APT: globalUpdateUpdateTaskMachineCore - (.globalUpdate.) -- C:\Windows\Tasks\globalUpdateUpdateTaskMachineCore.job [970] =>PUP.GlobalUpdate
O39 - APT: globalUpdateUpdateTaskMachineCore - (.globalUpdate.) -- C:\Windows\System32\Tasks\globalUpdateUpdateTaskMachineCore [970] =>PUP.GlobalUpdate
O39 - APT: globalUpdateUpdateTaskMachineUA - (.globalUpdate.) -- C:\Windows\Tasks\globalUpdateUpdateTaskMachineUA.job [974] =>PUP.GlobalUpdate
O39 - APT: globalUpdateUpdateTaskMachineUA - (.globalUpdate.) -- C:\Windows\System32\Tasks\globalUpdateUpdateTaskMachineUA [974] =>PUP.GlobalUpdate
O39 - APT: GoogleUpdateTaskMachineCore - (.Google Inc..) -- C:\Windows\Tasks\GoogleUpdateTaskMachineCore.job [1064]
O39 - APT: GoogleUpdateTaskMachineCore - (.Google Inc..) -- C:\Windows\System32\Tasks\GoogleUpdateTaskMachineCore [1064]
O39 - APT: GoogleUpdateTaskMachineUA - (.Google Inc..) -- C:\Windows\Tasks\GoogleUpdateTaskMachineUA.job [1068]
O39 - APT: GoogleUpdateTaskMachineUA - (.Google Inc..) -- C:\Windows\System32\Tasks\GoogleUpdateTaskMachineUA [1068]
O39 - APT: HP Photo Creations Communicator - (...) -- C:\Windows\Tasks\HP Photo Creations Communicator.job [324]
O39 - APT: HP Photo Creations Communicator - (...) -- C:\Windows\System32\Tasks\HP Photo Creations Communicator [324]
O39 - APT: PYSAL - (...) -- C:\Windows\Tasks\PYSAL.job [1336]
O39 - APT: PYSAL - (...) -- C:\Windows\System32\Tasks\PYSAL [1336]
O39 - APT: RegClean Pro_DEFAULT - (...) -- C:\Windows\Tasks\RegClean Pro_DEFAULT.job [258] =>Rogue.RegistryPowerCleaner
O39 - APT: RegClean Pro_DEFAULT - (...) -- C:\Windows\System32\Tasks\RegClean Pro_DEFAULT [258] =>Rogue.RegistryPowerCleaner
O39 - APT: RegClean Pro_UPDATES - (...) -- C:\Windows\Tasks\RegClean Pro_UPDATES.job [266] =>Rogue.RegistryPowerCleaner
O39 - APT: RegClean Pro_UPDATES - (...) -- C:\Windows\System32\Tasks\RegClean Pro_UPDATES [266] =>Rogue.RegistryPowerCleaner
~ Scheduled Task: 80 Scanned in 00mn 03s



---\\ Composants installés (ActiveSetup Installed Components) (O40)
O40 - ASIC: Microsoft Windows Media Player [64Bits] - >{22d6f312-b0f6-11d0-94ab-0080c74c7e95} . (.Microsoft Corporation - Ressources du Lecteur Windows Media.) -- C:\Windows\System32\wmploc.dll =>.Microsoft Corporation
O40 - ASIC: Internet Explorer [64Bits] - >{26923b43-4d38-484f-9b9e-de460746276c} . (.Microsoft Corporation - Utilitaire d'initialisation d'Internet Explorer par utilisateur.) -- C:\Windows\system32\ie4uinit.exe
O40 - ASIC: Browser Customizations [64Bits] - >{60B49E34-C7CC-11D0-8953-00A0C90347FF} . (.Microsoft Corporation - Personnalisation d’IEAK.) -- C:\Windows\system32\iedkcs32.dll
O40 - ASIC: Microsoft Windows Media Player 11.0 [64Bits] - {22d6f312-b0f6-11d0-94ab-0080c74c7e95} . (.Microsoft Corporation - Windows Media Player Extension.) -- C:\Windows\System32\wmpdxm.dll =>.Microsoft Corporation
O40 - ASIC: Themes Setup [64Bits] - {2C7339CF-2B09-4501-B3F3-F3508C9228ED} . (.Microsoft Corporation - API Windows Theme.) -- C:\Windows\System32\themeui.dll
O40 - ASIC: Microsoft Windows Mail 7 [64Bits] - {44BBA840-CC51-11CF-AAFA-00AA00B6015C} . (.Microsoft Corporation - Windows Mail.) -- C:\Program Files (x86)\Windows Mail\WinMail.exe =>.Microsoft Corporation
O40 - ASIC: Browsing Enhancements [64Bits] - {630b1da0-b465-11d1-9948-00c04f98bbc9} . (.Microsoft Corporation - Extension Shell dossier FTP Microsoft Internet Explorer..) -- C:\Windows\System32\msieftp.dll
O40 - ASIC: Microsoft Windows Media Player [64Bits] - {6BF52A52-394A-11d3-B153-00C04F79FAA6} . (.Microsoft Corporation - Ressources du Lecteur Windows Media.) -- C:\Windows\System32\wmploc.dll =>.Microsoft Corporation
O40 - ASIC: Windows Desktop Update [64Bits] - {89820200-ECBD-11cf-8B85-00AA005B4340} . (.Microsoft Corporation - DLL commune du shell Windows.) -- C:\Windows\System32\shell32.dll
O40 - ASIC: Web Platform Customizations [64Bits] - {89820200-ECBD-11cf-8B85-00AA005B4383} . (.Microsoft Corporation - Utilitaire d'initialisation d'Internet Explorer par utilisateur.) -- C:\Windows\System32\ie4uinit.exe
O40 - ASIC: (no name) [64Bits] - {89B4C1CD-B018-4511-B0A1-5476DBF70820} . (.Microsoft Corporation - Microsoft .NET IE SECURITY REGISTRATION.) -- C:\Windows\system32\mscories.dll
~ Active Setup: 11 Scanned in 00mn 00s



---\\ Pilotes lancés au démarrage du système (O41)
O41 - Driver: (AFD) . (.Microsoft Corporation - Ancillary Function Driver for WinSock.) - C:\Windows\system32\drivers\afd.sys
O41 - Driver: (cdrom) . (.Microsoft Corporation - SCSI CD-ROM Driver.) - C:\Windows\System32\DRIVERS\cdrom.sys
O41 - Driver: C:\Windows\System32\drivers\dfsc.sys (DfsC) . (.Microsoft Corporation - DFS Namespace Client Driver.) - C:\Windows\System32\Drivers\dfsc.sys
O41 - Driver: (hwinterface) . (. - .) - C:\Windows\System32\Drivers\hwinterface.sys (.not file.)
O41 - Driver: (i8042prt) . (.Microsoft Corporation - Pilote de port i8042.) - C:\Windows\System32\DRIVERS\i8042prt.sys
O41 - Driver: (innfd_1_10_0_14) . (.Infonaut - Infonaut Driver x64.) - C:\Windows\System32\drivers\innfd_1_10_0_14.sys =>PUP.Infonaut
O41 - Driver: (ISODrive) . (.EZB Systems, Inc. - ISO DVD/CD-ROM Device Driver.) - C:\Program Files (x86)\UltraISO\drivers\ISODrv64.sys
O41 - Driver: (kbdclass) . (.Microsoft Corporation - Pilote de la classe Clavier.) - C:\Windows\System32\DRIVERS\kbdclass.sys
O41 - Driver: (kbdhid) . (.Microsoft Corporation - Pilote de filtre clavier HID.) - C:\Windows\System32\DRIVERS\kbdhid.sys
O41 - Driver: (mouclass) . (.Microsoft Corporation - Pilote de la classe Souris.) - C:\Windows\System32\DRIVERS\mouclass.sys
O41 - Driver: (MpKsl029ce939) . (. - .) - C:\ProgramData\Microsoft\Microsoft Antimalware\Definition Updates\{493B5A6C-92CD-498D-A8FF-A0F27B3C41A2}\MpKsl029ce939.sys (.not file.)
O41 - Driver: (NetBIOS) . (.Microsoft Corporation - NetBIOS interface driver.) - C:\Windows\System32\DRIVERS\netbios.sys
O41 - Driver: (netbt) . (.Microsoft Corporation - MBT Transport driver.) - C:\Windows\System32\DRIVERS\netbt.sys
O41 - Driver: (nsiproxy) . (.Microsoft Corporation - NSI Proxy.) - C:\Windows\System32\drivers\nsiproxy.sys
O41 - Driver: C:\Windows\System32\drivers\pacer.sys (PSched) . (.Microsoft Corporation - Planificateur de paquets QoS.) - C:\Windows\System32\DRIVERS\pacer.sys
O41 - Driver: (RasAcd) . (.Microsoft Corporation - RAS Automatic Connection Driver.) - C:\Windows\System32\DRIVERS\rasacd.sys
O41 - Driver: (rdbss) . (.Microsoft Corporation - Redirected Drive Buffering SubSystem Driver.) - C:\Windows\System32\DRIVERS\rdbss.sys
O41 - Driver: (RDPCDD) . (.Microsoft Corporation - RDP Miniport.) - C:\Windows\System32\DRIVERS\RDPCDD.sys
O41 - Driver: (RDPENCDD) . (.Microsoft Corporation - RDP Miniport.) - C:\Windows\System32\drivers\rdpencdd.sys
O41 - Driver: (Serial) . (.Microsoft Corporation - Pilote de périphérique série.) - C:\Windows\System32\DRIVERS\serial.sys
O41 - Driver: C:\Windows\System32\tcpipcfg.dll (Smb) . (.Microsoft Corporation - SMB Transport driver.) - C:\Windows\System32\DRIVERS\smb.sys
O41 - Driver: C:\Windows\System32\tcpipcfg.dll (tdx) . (.Microsoft Corporation - TDI Translation Driver.) - C:\Windows\System32\DRIVERS\tdx.sys
O41 - Driver: (TermDD) . (.Microsoft Corporation - Terminal Server Driver.) - C:\Windows\System32\DRIVERS\termdd.sys
O41 - Driver: (VgaSave) . (.Microsoft Corporation - VGA/Super VGA Video Driver.) - C:\Windows\system32\drivers\vga.sys
O41 - Driver: (Wanarpv6) . (.Microsoft Corporation - MS Remote Access and Routing ARP Driver.) - C:\Windows\System32\DRIVERS\wanarp.sys
O41 - Driver: Environnement de prise en charge de Fournisseur de services non-IFS Windows Sockets 2.0 (ws2ifsl) . (.Microsoft Corporation - Winsock2 IFS Layer.) - C:\Windows\system32\drivers\ws2ifsl.sys
~ Drivers: 78 Scanned in 00mn 00s



---\\ Logiciels installés (O42)
O42 - Logiciel: 7-Zip 9.20 - (...) [HKLM][64Bits] -- 7-Zip
O42 - Logiciel: AGEIA GAME System Software - (.AGEIA Technologies.) [HKLM][64Bits] -- {DEDF2885-0086-4534-9912-F9B97377ED07}
O42 - Logiciel: AMD APP SDK Runtime - (.Advanced Micro Devices Inc..) [HKLM][64Bits] -- {503F672D-6C84-448A-8F8F-4BC35AC83441}
O42 - Logiciel: AMD Catalyst Install Manager - (.Advanced Micro Devices, Inc..) [HKLM][64Bits] -- {5831C6D6-309D-DBB5-14F7-FEE57086CEE7}
O42 - Logiciel: Acer Arcade Live Main Page - (.Acer Inc..) [HKLM][64Bits] -- {EFBDC2B0-FAA8-4B78-8DE1-AEBE7958FA37}
O42 - Logiciel: Acer DV Magician - (.Acer Inc..) [HKLM][64Bits] -- {F6EFFB76-4A07-11DA-9D78-000129760D75}
O42 - Logiciel: Acer DVDivine - (.Acer Inc..) [HKLM][64Bits] -- {B145EC69-66F5-11D8-9D75-000129760D75}
O42 - Logiciel: Acer Empowering Technology - (.Acer Incorporated.) [HKLM][64Bits] -- {8F1B6239-FEA0-450A-A950-B05276CE177C}
O42 - Logiciel: Acer HomeMedia - (.Acer Inc..) [HKLM][64Bits] -- {AA4BF92B-2AAF-11DA-9D78-000129760D75}
O42 - Logiciel: Acer HomeMedia Connect - (.Acer Inc..) [HKLM][64Bits] -- {132888AE-EF67-41C5-BCA2-7D5D2488AB63}
O42 - Logiciel: Acer HomeMedia Trial Creator - (.Acer Inc..) [HKLM][64Bits] -- {B580C409-E16F-44FF-904D-3AE94E113BE0}
O42 - Logiciel: Acer Product Registration - (.Acer Incorporated.) [HKLM][64Bits] -- {DA20E1A8-07CB-4EE7-9B72-A7E28C953F0E}
O42 - Logiciel: Acer ScreenSaver - (.Acer Incorporated.) [HKLM][64Bits] -- {79DD56FC-DB8B-47F5-9C80-78B62E05F9BC}
O42 - Logiciel: Acer SlideShow DVD - (.Acer Inc..) [HKLM][64Bits] -- {41581EF5-45A7-11DA-9D78-000129760D75}
O42 - Logiciel: Acer VideoMagician - (.Acer Inc..) [HKLM][64Bits] -- {F79A208D-D929-11D9-9D77-000129760D75}
O42 - Logiciel: Acer eDataSecurity Management - (.Egis Inc..) [HKLM][64Bits] -- {A5633652-3795-4829-BB0B-644F0279E279}
O42 - Logiciel: Acer eRecovery Management - (.Acer Incorporated.) [HKLM][64Bits] -- {7F811A54-5A09-4579-90E1-C93498E230D9}
O42 - Logiciel: Adobe AIR - (.Adobe Systems Incorporated.) [HKLM][64Bits] -- Adobe AIR
O42 - Logiciel: Adobe AIR - (.Adobe Systems Incorporated.) [HKLM][64Bits] -- {7BBAEC47-1CC0-4CB8-ADB4-531B78DBD1DD}
O42 - Logiciel: Adobe Community Help - (.Adobe Systems Incorporated..) [HKLM][64Bits] -- chc.4875E02D9FB21EE389F73B8D1702B320485DF8CE.1
O42 - Logiciel: Adobe Community Help - (.Adobe Systems Incorporated..) [HKLM][64Bits] -- {A127C3C0-055E-38CF-B38F-1E85F8BBBFFE}
O42 - Logiciel: Adobe Flash Player 17 ActiveX - (.Adobe Systems Incorporated.) [HKLM][64Bits] -- Adobe Flash Player ActiveX
O42 - Logiciel: Adobe Flash Player 17 NPAPI - (.Adobe Systems Incorporated.) [HKLM][64Bits] -- Adobe Flash Player NPAPI
O42 - Logiciel: Adobe Photoshop CS5 - (.Adobe Systems Incorporated.) [HKLM][64Bits] -- {15FEDA5F-141C-4127-8D7E-B962D1742728} =>.Adobe Systems Incorporated
O42 - Logiciel: Adobe Reader 9.5.5 - Français - (.Adobe Systems Incorporated.) [HKLM][64Bits] -- {AC76BA86-7AD7-1036-7B44-A95000000001}
O42 - Logiciel: Advanced-System Protector - (.systweak.com.) [HKLM][64Bits] -- 00212D92-C5D8-4ff4-AE50-B20F0F85C40A_Systweak_Ad~34F3174E_is1 =>PUP.AdvancedSystemProtector
O42 - Logiciel: Advertising Center - (.Nero AG.) [HKLM][64Bits] -- {B2EC4A38-B545-4A00-8214-13FE0E915E6D}
O42 - Logiciel: Alice Greenfingers - (.Oberon Media.) [HKLM][64Bits] -- {82C36957-D2B8-4EF2-B88C-5FA03AA848C7-112920767}
O42 - Logiciel: Alien Shooter - (.Oberon Media.) [HKLM][64Bits] -- {82C36957-D2B8-4EF2-B88C-5FA03AA848C7-110082360}
O42 - Logiciel: Angry Birds - (.Rovio.) [HKLM][64Bits] -- {07A6B206-3F11-4D92-92A1-90E116ADD660}
O42 - Logiciel: Angry Birds - (.Rovio.) [HKLM][64Bits] -- {61637194-D4E8-45CB-8619-23CE7B637FCF}
O42 - Logiciel: Angry Birds Rio - (.Rovio.) [HKLM][64Bits] -- {0D637670-BC00-4FAC-8E00-518EB7F65091}
O42 - Logiciel: Angry Birds Seasons - (.Rovio.) [HKLM][64Bits] -- {F3FDA09C-57AA-40CC-A555-FED7EF421E7E}
O42 - Logiciel: Angry Birds Space - (.Rovio.) [HKLM][64Bits] -- {40044440-4ED4-4792-8417-5EE6374F001C}
O42 - Logiciel: AnyProtect - (.CMI Limited.) [HKLM][64Bits] -- AnyProtect =>PUP.CMILimited
O42 - Logiciel: Audacity 1.3.14 (Unicode) - (.Audacity Team.) [HKLM][64Bits] -- Audacity 1.3 Beta (Unicode)_is1
O42 - Logiciel: Battle.net - (.Blizzard Entertainment.) [HKLM][64Bits] -- Battle.net
O42 - Logiciel: Beetle Junior - (.Oberon Media.) [HKLM][64Bits] -- {82C36957-D2B8-4EF2-B88C-5FA03AA848C7-110052107}
O42 - Logiciel: BlockAndSurf - (.BlockAndSurf-software.) [HKLM][64Bits] -- D61CFC10-9823-110E-ED54-998575A4400D =>PUP.BlockAndSurf
O42 - Logiciel: Bonjour - (.Apple Inc..) [HKLM][64Bits] -- {6E3610B2-430D-4EB0-81E3-2B57E8B9DE8D}
O42 - Logiciel: Burnout(TM) Paradise The Ultimate Box - (.Electronic Arts.) [HKLM][64Bits] -- {9A996B6A-846E-4A89-B9C4-17546B7BE49F}
O42 - Logiciel: Buzzdock - (.Alactro LLC.) [HKLM][64Bits] -- {cfd32d46-7d3f-483f-bace-7172aec5592d} =>PUP.BuzzDock
O42 - Logiciel: C:\Program Files (x86)\Acer GameZone\GameConsole - (.Oberon Media, Inc..) [HKLM][64Bits] -- {71C2828F-2678-4675-BDEC-895424861262}_is1
O42 - Logiciel: CCleaner - (.Piriform.) [HKLM][64Bits] -- CCleaner
O42 - Logiciel: CMN - (...) [HKLM][64Bits] -- {F8C8FC80-E542-11D3-8F7F-009027591AA8}
O42 - Logiciel: Canon IJ Network Scanner Selector EX - (.Canon Inc..) [HKLM][64Bits] -- Canon_IJ_Network_Scanner_Selector_EX
O42 - Logiciel: Canon IJ Network Tool - (.Canon Inc..) [HKLM][64Bits] -- Canon_IJ_Network_UTILITY
O42 - Logiciel: Canon IJ Scan Utility - (.Canon Inc..) [HKLM][64Bits] -- Canon_IJ_Scan_Utility
O42 - Logiciel: Canon MG5600 series MP Drivers - (.Canon Inc..) [HKLM][64Bits] -- {1199FAD5-9546-44f3-81CF-FFDB8040B7BF}_Canon_MG5600_series
O42 - Logiciel: Canon My Image Garden - (.Canon Inc..) [HKLM][64Bits] -- Canon My Image Garden
O42 - Logiciel: Canon My Image Garden Design Files - (.Canon Inc..) [HKLM][64Bits] -- Canon My Image Garden Design Files
O42 - Logiciel: Canon Quick Menu - (.Canon Inc..) [HKLM][64Bits] -- CanonQuickMenu
O42 - Logiciel: Caprice32 - (...) [HKLM][64Bits] -- Caprice32
O42 - Logiciel: Catalyst Control Center - Branding - (.Advanced Micro Devices, Inc..) [HKLM][64Bits] -- {03D4C700-2BFE-43E0-A0B4-9512B43C5B9F}
O42 - Logiciel: Catalyst Control Center - Branding - (.Advanced Micro Devices, Inc..) [HKLM][64Bits] -- {BBC2068D-CE9C-48F5-A6EA-4B44B9DB14A5}
O42 - Logiciel: Chinese Traditional Fonts Support For Adobe Reader 9 - (.Adobe Systems Incorporated.) [HKLM][64Bits] -- {AC76BA86-7AD7-2448-0000-900000000003}
O42 - Logiciel: Cinema PlusV14.04 - (.Cinema PlusV14.04.) [HKLM][64Bits] -- Cinema PlusV14.04 =>PUP.CrossRider
O42 - Logiciel: ConvertHelper 2.2 - (.DownloadHelper.) [HKLM][64Bits] -- {27CC6AB1-E72B-4179-AF1A-EAE507EBAF51}_is1
O42 - Logiciel: DAEMON Tools Lite - (.Disc Soft Ltd.) [HKLM][64Bits] -- DAEMON Tools Lite =>.DT Soft Ltd
O42 - Logiciel: DH Driver Cleaner Professional Edition - (.Ruud Ketelaars.) [HKLM][64Bits] -- Driver Cleaner Pro
O42 - Logiciel: DVD Shrink 3.2 - (.DVD Shrink.) [HKLM][64Bits] -- DVD Shrink_is1
O42 - Logiciel: Dead Space™ 2 - (.Electronic Arts.) [HKLM][64Bits] -- {96D06FDD-6AF4-4309-BC1B-1C9588B0575E}
O42 - Logiciel: DiRT 3 - (.Codemasters.) [HKLM][64Bits] -- GFWL_{434D0FA0-1558-4D8E-AC3D-BD1000008200}
O42 - Logiciel: DiRT 3 - (.Codemasters.) [HKLM][64Bits] -- {434D0FA0-1558-4D8E-AC3D-BD1000008200}
O42 - Logiciel: Digital More - (.Digital More.) [HKLM][64Bits] -- Digital More =>PUP.DigitalMore
O42 - Logiciel: DolbyFiles - (.Nero AG.) [HKLM][64Bits] -- {B1ADF008-E898-4FE2-8A1F-690D9A06ACAF}
O42 - Logiciel: Dongle Sagem 760N - (...) [HKLM][64Bits] -- LIVEBOX_SAGEM_760N
O42 - Logiciel: Dream Day First Home - (.Oberon Media.) [HKLM][64Bits] -- {82C36957-D2B8-4EF2-B88C-5FA03AA848C7-113832110}
O42 - Logiciel: Enregistrement utilisateur de Canon MG5600 series - (.‭Canon Inc..) [HKLM][64Bits] -- Enregistrement utilisateur de Canon MG5600 series =>.Canon Inc
O42 - Logiciel: Explor@ Park - (.VTech.) [HKLM][64Bits] -- VTechDownloadManager
O42 - Logiciel: FLAC 1.2.1b (remove only) - (.Xiph.org.) [HKLM][64Bits] -- FLAC
O42 - Logiciel: FTPRush v1 Unicode - (.IoRush Software.) [HKLM][64Bits] -- FTPRush_is1
O42 - Logiciel: FileZilla Client 3.3.0.1 - (...) [HKLM][64Bits] -- FileZilla Client
O42 - Logiciel: FormatFactory 2.60 - (.Free Time.) [HKLM][64Bits] -- FormatFactory
O42 - Logiciel: French App Name - (.Adobe Systems Incorporated.) [HKLM][64Bits] -- com.adobe.amp.4875E02D9FB21EE389F73B8D1702B320485DF8CE.1
O42 - Logiciel: French App Name - (.Adobe Systems Incorporated.) [HKLM][64Bits] -- {DE3A9DC5-9A5D-6485-9662-347162C7E4CA}
O42 - Logiciel: Galapago - (.Oberon Media.) [HKLM][64Bits] -- {82C36957-D2B8-4EF2-B88C-5FA03AA848C7-111307457}
O42 - Logiciel: GamesDesktop 001.424 - (.GAMESDESKTOP.) [HKLM][64Bits] -- gmsd_fr_424_is1 =>PUP.CrossRider
O42 - Logiciel: Go-Go Gourmet - (.Oberon Media.) [HKLM][64Bits] -- {82C36957-D2B8-4EF2-B88C-5FA03AA848C7-114072167}
O42 - Logiciel: Google Chrome - (.Google Inc..) [HKLM][64Bits] -- Google Chrome
O42 - Logiciel: Google Update Helper - (.Google Inc..) [HKLM][64Bits] -- {60EC980A-BDA2-4CB6-A427-B07A5498B4CA}
O42 - Logiciel: Google Update Helper - (.Google Inc..) [HKLM][64Bits] -- {A92DAB39-4E2C-4304-9AB6-BC44E68B55E2}
O42 - Logiciel: Google Earth - (.Google.) [HKLM][64Bits] -- {4D2A6330-2F8B-11E3-9C40-B8AC6F97B88E}
O42 - Logiciel: HP Deskjet 3070 B611 series Aide - (.Hewlett Packard.) [HKLM][64Bits] -- {9F20CE56-3828-432D-A3C5-3EC6A2ED93C6}
O42 - Logiciel: HP Photo Creations - (.HP Photo Creations.) [HKLM][64Bits] -- HP Photo Creations
O42 - Logiciel: HP Update - (.Hewlett-Packard.) [HKLM][64Bits] -- {DDD5104F-1C44-49EB-9E6B-29EC5D27658B}
O42 - Logiciel: Hearthstone - (.Blizzard Entertainment.) [HKLM][64Bits] -- Hearthstone
O42 - Logiciel: Heroes of Hellas - (.Oberon Media.) [HKLM][64Bits] -- {82C36957-D2B8-4EF2-B88C-5FA03AA848C7-113786380}
O42 - Logiciel: Hotline Miami 2 - Wrong Number - (.GOG.com.) [HKLM][64Bits] -- 1424773427_is1
O42 - Logiciel: Image 2 ASCII Art - (...) [HKLM][64Bits] -- Image 2 ASCII Art
O42 - Logiciel: Infonaut 1.10.0.14 - (.Infonaut.) [HKLM][64Bits] -- Infonaut_1.10.0.14 =>PUP.Infonaut
O42 - Logiciel: Intel(R) Network Connections 13.1.33.0 - (.Intel.) [HKLM][64Bits] -- PROSetDX
O42 - Logiciel: Intel(R) Network Connections 13.1.33.0 - (.Intel.) [HKLM][64Bits] -- {DDD076BF-C5C3-468C-AA1B-F9A7E47446FE}
O42 - Logiciel: Java 7 Update 71 - (.Oracle.) [HKLM][64Bits] -- {26A24AE4-039D-4CA4-87B4-2F03217071FF}
O42 - Logiciel: Java(TM) 6 Update 20 - (.Sun Microsystems, Inc..) [HKLM][64Bits] -- {26A24AE4-039D-4CA4-87B4-2F83216020F0}
O42 - Logiciel: K-Lite Codec Pack 9.9.5 (Full) - (...) [HKLM][64Bits] -- KLiteCodecPack_is1
O42 - Logiciel: LAME v3.99.3 (for Windows) - (...) [HKLM][64Bits] -- LAME_is1
O42 - Logiciel: Logiciel d'archivage WinRAR - (...) [HKLM][64Bits] -- WinRAR archiver
O42 - Logiciel: Logiciel de base du périphérique HP Deskjet 3070 B611 series - (.Hewlett-Packard Co..) [HKLM][64Bits] -- {1B62ED3F-1957-4CEA-A344-CA7582ECA8C3} =>.Hewlett-Packard Co
O42 - Logiciel: MP3 Cut 5.5.1 - (.Accmeware Corporation.) [HKLM][64Bits] -- 1A455290-CCE1-400A-B40C-BA562A3804F5_is1
O42 - Logiciel: MP3 Cut DB Toolbar Toolbar - (...) [HKLM][64Bits] -- MP3 Cut DB Toolbar Toolbar
O42 - Logiciel: MSXML 4.0 SP2 (KB954430) - (.Microsoft Corporation.) [HKLM][64Bits] -- {86493ADD-824D-4B8E-BD72-8C5DCDC52A71}
O42 - Logiciel: MSXML 4.0 SP2 (KB973688) - (.Microsoft Corporation.) [HKLM][64Bits] -- {F662A8E6-F4DC-41A2-901E-8C11F044BDEC}
O42 - Logiciel: Magic Farm - (.Oberon Media.) [HKLM][64Bits] -- {82C36957-D2B8-4EF2-B88C-5FA03AA848C7-114717227}
O42 - Logiciel: Magic Marker wersja Magic Marker - (.IQ Publishing.) [HKLM][64Bits] -- {E9098858-9391-4045-BA68-C33D9D962A9E}_is1
O42 - Logiciel: Mail Merge Check - (...) [HKLM][64Bits] -- IGS
O42 - Logiciel: Malwarebytes Anti-Malware version 2.0.4.1028 - (.Malwarebytes Corporation.) [HKLM][64Bits] -- Malwarebytes Anti-Malware_is1
O42 - Logiciel: MediaInfo 0.7.20 - (.MediaArea.net.) [HKLM][64Bits] -- MediaInfo
O42 - Logiciel: Menu Templates - Starter Kit - (.Nero AG.) [HKLM][64Bits] -- {B78120A0-CF84-4366-A393-4D0A59BC546C}
O42 - Logiciel: Microsoft Choice Guard - (.Microsoft Corporation.) [HKLM][64Bits] -- {F0E12BBA-AD66-4022-A453-A1C8A0C4D570}
O42 - Logiciel: Microsoft Games for Windows - LIVE Redistributable - (.Microsoft Corporation.) [HKLM][64Bits] -- {F2508213-9989-4E85-A078-72BE483917EF}
O42 - Logiciel: Microsoft Games for Windows Marketplace - (.Microsoft Corporation.) [HKLM][64Bits] -- {4CB0307C-565E-4441-86BE-0DF2E4FB828C}
O42 - Logiciel: Microsoft Security Client - (.Microsoft Corporation.) [HKLM][64Bits] -- {996D32B6-F629-4764-894B-CB24D9C19051}
O42 - Logiciel: Microsoft Security Essentials - (.Microsoft Corporation.) [HKLM][64Bits] -- Microsoft Security Client
O42 - Logiciel: Microsoft Silverlight - (.Microsoft Corporation.) [HKLM][64Bits] -- {89F4137D-6C26-4A84-BDB8-2E5A4BB71E00}
O42 - Logiciel: Microsoft Windows Media Video 9 VCM - (...) [HKLM][64Bits] -- WMV9_VCM
O42 - Logiciel: Microsoft Works - (.Microsoft Corporation.) [HKLM][64Bits] -- {6B1CB38D-E2E4-4a30-933D-EFDEBA76AD9C}
O42 - Logiciel: Microsoft XNA Framework Redistributable 3.1 - (.Microsoft Corporation.) [HKLM][64Bits] -- {19BFDA5D-1FE2-4F25-97F9-1A79DD04EE20}
O42 - Logiciel: Microsoft XNA Framework Redistributable 4.0 Refresh - (.Microsoft Corporation.) [HKLM][64Bits] -- {D69C8EDE-BBC5-436B-8E0E-C5A6D311CF4F}
O42 - Logiciel: Micy Roll version 0.0.0.9 - (.WaLMaRT.) [HKLM][64Bits] -- Micy Roll_is1
O42 - Logiciel: Minecraft - (.FreeGamePick.) [HKLM][64Bits] -- Minecraft_is1
O42 - Logiciel: Mises à jour NVIDIA 8.3.14 - (.NVIDIA Corporation.) [HKLM][64Bits] -- {B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.Update
O42 - Logiciel: MixPad - Mixeur de fichiers audio - (.NCH Software.) [HKLM][64Bits] -- MixPad
O42 - Logiciel: Module linguistique de la visionneuse d'aide Microsoft 1.0 - FRA - (.Microsoft Corporation.) [HKLM][64Bits] -- Microsoft Help Viewer 1.0 Language Pack - FRA
O42 - Logiciel: Movie Templates - Starter Kit - (.Nero AG.) [HKLM][64Bits] -- {E498385E-1C51-459A-B45F-1721E37AA1A0}
O42 - Logiciel: Mozilla Firefox 37.0.1 (x86 fr) - (.Mozilla.) [HKLM][64Bits] -- Mozilla Firefox 37.0.1 (x86 fr)
O42 - Logiciel: Mozilla Maintenance Service - (.Mozilla.) [HKLM][64Bits] -- MozillaMaintenanceService
O42 - Logiciel: Ms. Splosion Man - (...) [HKLM][64Bits] -- Ms. Splosion Man_is1
O42 - Logiciel: Mystery Solitaire - Secret Island - (.Oberon Media.) [HKLM][64Bits] -- {82C36957-D2B8-4EF2-B88C-5FA03AA848C7-111796363}
O42 - Logiciel: NFO viewer v 2.1 - (...) [HKLM][64Bits] -- NFO viewer_is1
O42 - Logiciel: NTI Backup Now 5 - (.NewTech Infosystems.) [HKLM][64Bits] -- InstallShield_{12EFA1A4-AC3B-443C-8143-237EDE760403}
O42 - Logiciel: NTI Media Maker 8 - (.NewTech Infosystems.) [HKLM][64Bits] -- InstallShield_{2413930C-8309-47A6-BC61-5EF27A4222BC}
O42 - Logiciel: NVIDIA GeForce Experience 1.6.1 - (.NVIDIA Corporation.) [HKLM][64Bits] -- {B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.GFExperience
O42 - Logiciel: NVIDIA Logiciel système PhysX 9.13.1220 - (.NVIDIA Corporation.) [HKLM][64Bits] -- {B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.PhysX
O42 - Logiciel: NVIDIA PhysX - (.NVIDIA Corporation.) [HKLM][64Bits] -- {80407BA7-7763-4395-AB98-5233F1B34E65}
O42 - Logiciel: NVIDIA Pilote audio HD : 1.3.30.1 - (.NVIDIA Corporation.) [HKLM][64Bits] -- {B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_HDAudio.Driver
O42 - Logiciel: NVIDIA Pilote du contrôleur 3D Vision 337.88 - (.NVIDIA Corporation.) [HKLM][64Bits] -- {B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.NVIRUSB
O42 - Logiciel: NVIDIA Pilote graphique 337.88 - (.NVIDIA Corporation.) [HKLM][64Bits] -- {B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.Driver
O42 - Logiciel: NX Client for Windows 3.3.0-6 - (.NoMachine.) [HKLM][64Bits] -- nxclient_is1
O42 - Logiciel: Navigateur Orange - (...) [HKLM][64Bits] -- {ORAHSS}.Browser
O42 - Logiciel: Nero 9 - (.Nero AG.) [HKLM][64Bits] -- {8f0197b3-87f4-4dad-8f81-57929becc411}
O42 - Logiciel: Nero BurnRights - (.Nero AG.) [HKLM][64Bits] -- {7829DB6F-A066-4E40-8912-CB07887C20BB}
O42 - Logiciel: Nero ControlCenter - (.Nero AG.) [HKLM][64Bits] -- {BD5CA0DA-71AD-43DA-B19E-6EEE0C9ADC9A}
O42 - Logiciel: Nero CoverDesigner - (.Nero AG.) [HKLM][64Bits] -- {62AC81F6-BDD3-4110-9D36-3E9EAAB40999}
O42 - Logiciel: Nero Disc Copy Gadget - (.Nero AG.) [HKLM][64Bits] -- {F1861F30-3419-44DB-B2A1-C274825698B3}
O42 - Logiciel: Nero DiscSpeed - (.Nero AG.) [HKLM][64Bits] -- {869200DB-287A-4DC0-B02B-2B6787FBCD4C}
O42 - Logiciel: Nero DriveSpeed - (.Nero AG.) [HKLM][64Bits] -- {33CF58F5-48D8-4575-83D6-96F574E4D83A}
O42 - Logiciel: Nero InfoTool - (.Nero AG.) [HKLM][64Bits] -- {FBCDFD61-7DCF-4E71-9226-873BA0053139}
O42 - Logiciel: Nero Installer - (.Nero AG.) [HKLM][64Bits] -- {E8A80433-302B-4FF1-815D-FCC8EAC482FF}
O42 - Logiciel: Nero Recode - (.Nero AG.) [HKLM][64Bits] -- {359CFC0A-BEB1-440D-95BA-CF63A86DA34F}
O42 - Logiciel: Nero Rescue Agent - (.Nero AG.) [HKLM][64Bits] -- {368BA326-73AD-4351-84ED-3C0A7A52CC53}
O42 - Logiciel: Nero ShowTime - (.Nero AG.) [HKLM][64Bits] -- {D9DCF92E-72EB-412D-AC71-3B01276E5F8B}
O42 - Logiciel: Nero StartSmart - (.Nero AG.) [HKLM][64Bits] -- {7748AC8C-18E3-43BB-959B-088FAEA16FB2}
O42 - Logiciel: Nero Vision - (.Nero AG.) [HKLM][64Bits] -- {43E39830-1826-415D-8BAE-86845787B54B}
O42 - Logiciel: Nero WaveEditor - (.Nero AG.) [HKLM][64Bits] -- {A209525B-3377-43F4-B886-32F6B6E7356F}
O42 - Logiciel: NeroBurningROM - (.Nero AG.) [HKLM][64Bits] -- {D025A639-B9C9-417D-8531-208859000AF8}
O42 - Logiciel: NeroExpress - (.Nero AG.) [HKLM][64Bits] -- {595A3116-40BB-4E0F-A2E8-D7951DA56270}
O42 - Logiciel: Nexus 11.10 - (...) [HKLM][64Bits] -- Winstep Xtreme_is1
O42 - Logiciel: Ongaku - (.SKIDROW.) [HKLM][64Bits] -- {DD673648-FD88-49F7-8CE1-B7A29B9117DB}
O42 - Logiciel: Online Games Manager v1.30 - (.Real Networks, Inc..) [HKLM][64Bits] -- Online Games Manager
O42 - Logiciel: OpenAL - (...) [HKLM][64Bits] -- OpenAL
O42 - Logiciel: OpenOffice.org 3.2 - (.OpenOffice.org.) [HKLM][64Bits] -- {266517E6-D866-439D-919C-B8B1A52E6080}
O42 - Logiciel: Optimizer Pro v3.2 - (.PCUtilities Software Limited.) [HKLM][64Bits] -- Optimizer Pro_is1 =>PUP.OptimizerPro
O42 - Logiciel: Orange - Logiciels Internet - (...) [HKLM][64Bits] -- {ORAHSS}.UninstallSuite
O42 - Logiciel: Orange Installer - (.Orange.) [HKLM][64Bits] -- Orange Installer
O42 - Logiciel: Orange update - (.Orange.) [HKLM][64Bits] -- OrangeUpdateManager
O42 - Logiciel: PC Connectivity Solution - (.Nokia.) [HKLM][64Bits] -- {AC599724-5755-48C1-ABE7-ABB857652930}
O42 - Logiciel: PDF Settings CS5 - (.Adobe Systems Incorporated.) [HKLM][64Bits] -- {A78FE97A-C0C8-49CE-89D0-EDD524A17392}
O42 - Logiciel: PS3 Video 9 2.25 - (.Red Kawa Inc..) [HKLM][64Bits] -- PS3 Video 9
O42 - Logiciel: PX5 Advanced Sound Editor - (.Turtle Beach.) [HKLM][64Bits] -- {92F59AB3-8B11-4552-8F40-462270A8FD5E}
O42 - Logiciel: Package de pilotes Windows - Nokia pccsmcfd (10/12/2007 6.85.4.0) - (.Nokia.) [HKLM][64Bits] -- BC15EA930074932BB2C4B4493C9FD4EA95087D1A
O42 - Logiciel: Papo & Yo - (.Minority Media.) [HKLM][64Bits] -- Papo & Yo_is1
O42 - Logiciel: Peggle Deluxe - (.Zylom.) [HKLM][64Bits] -- d6638a4b8de48c7a31b7185b7bfcc772
O42 - Logiciel: PhotoFiltre - (...) [HKLM][64Bits] -- PhotoFiltre
O42 - Logiciel: ProtectDisc Driver, Version 11 - (.ProtectDisc Software GmbH.) [HKLM][64Bits] -- ProtectDisc Driver 11
O42 - Logiciel: PuTTY version 0.60 - (.Simon Tatham.) [HKLM][64Bits] -- PuTTY_is1
O42 - Logiciel: PunkBuster Services - (.Even Balance, Inc..) [HKLM][64Bits] -- PunkBusterSvc
O42 - Logiciel: Push The Box version 1.0 - (...) [HKLM][64Bits] -- {8EA7B810-AF02-446C-B076-D16251E8E93F}_is1
O42 - Logiciel: Rapture3D 2.5.1 Game - (.Blue Ripple Sound.) [HKLM][64Bits] -- {D2FCA41E-AC01-4DCD-B3A7-DC9E32363065}}_is1
O42 - Logiciel: Rayman Origins - (.Ubisoft.) [HKLM][64Bits] -- {DE491AB9-1D47-4FED-A8F5-4D4325B2EB4B}
O42 - Logiciel: Realtek High Definition Audio Driver - (.Realtek Semiconductor Corp..) [HKLM][64Bits] -- {F132AF7F-7BCA-4EDE-8A7C-958108FE7DBC}
O42 - Logiciel: Realtek USB 2.0 Card Reader - (.Realtek Semiconductor Corp..) [HKLM][64Bits] -- {DC24971E-1946-445D-8A82-CE685433FA7D}
O42 - Logiciel: RegClean-Pro - (.systweak.com.) [HKLM][64Bits] -- RegClean-Pro_is1 =>Rogue.RegistryPowerCleaner
O42 - Logiciel: Registry Helper - (.SafeApp Software, LLC.) [HKLM][64Bits] -- Registry Helper =>PUP.RegistryHelper
O42 - Logiciel: Remote Desktop Access (VuuPC) - (.CMI Limited.) [HKLM][64Bits] -- VOPackage =>PUP.CMILimited
O42 - Logiciel: Renegade Ops - (...) [HKLM][64Bits] -- Renegade Ops_is1
O42 - Logiciel: Reverse Chatroom - (.Reverse Chatroom.) [HKLM][64Bits] -- igsc
O42 - Logiciel: Ricochet Infinity - (.Reflexive Entertainment, Inc..) [HKLM][64Bits] -- Ricochet Infinity_is1
O42 - Logiciel: Roll Encrypt - (.Roll Encrypt.) [HKLM][64Bits] -- wincheck =>PUP.Wincheck
O42 - Logiciel: SAMSUNG Mobile Composite Device Software - (...) [HKLM][64Bits] -- SAMSUNG Mobile Composite Device
O42 - Logiciel: SAMSUNG Mobile Modem Driver Set - (...) [HKLM][64Bits] -- SAMSUNG Mobile Modem
O42 - Logiciel: SAMSUNG Mobile Modem V2 Software - (...) [HKLM][64Bits] -- SAMSUNG Mobile Modem V2
O42 - Logiciel: SAMSUNG Mobile USB Download Driver Software - (...) [HKLM][64Bits] -- SAMSUNG Mobile USB Download Driver
O42 - Logiciel: SAMSUNG Mobile USB Modem 1.0 Software - (...) [HKLM][64Bits] -- SAMSUNG Mobile USB Modem 1.0
O42 - Logiciel: SAMSUNG Mobile USB Modem Software - (...) [HKLM][64Bits] -- SAMSUNG Mobile USB Modem
O42 - Logiciel: SAMSUNG SYMBIAN USB Download Driver - (.SAMSUNG Electronics CO,.LTD.) [HKLM][64Bits] -- {D8CE69B0-9274-4b8c-BA49-0FF6A20A3C65}
O42 - Logiciel: SAMSUNG USB Mobile Device Software - (...) [HKLM][64Bits] -- SAMSUNG USB Mobile Device
O42 - Logiciel: SUPER © v2012.build.51 (April 7, 2012) version v2012.build.51 - (.eRightSoft.) [HKLM][64Bits] -- {B93DCF58-AA57-41EC-8D69-B05C66C6312D}_is1
O42 - Logiciel: SUPER © v2013.build.59+Recorder (2013/12/18) version v2013.buil - (.eRightSoft.) [HKLM][64Bits] -- {8E2A18E2-96AF-4DF9-8459-5C06B75139A4}_is1
O42 - Logiciel: Samsung Mobile Modem Device Software - (...) [HKLM][64Bits] -- Samsung Mobile Modem Device
O42 - Logiciel: Samsung Mobile phone USB driver Software - (...) [HKLM][64Bits] -- Samsung Mobile phone USB driver
O42 - Logiciel: Samsung New PC Studio - (.Samsung Electronics Co., Ltd..) [HKLM][64Bits] -- InstallShield_{F193FC0E-9E18-40FC-A974-509A1BDD240A}
O42 - Logiciel: Samsung New PC Studio - (.Samsung Electronics Co., Ltd..) [HKLM][64Bits] -- {F193FC0E-9E18-40FC-A974-509A1BDD240A}
O42 - Logiciel: Samsung New PC Studio USB Driver Installer - (.Samsung Electronics Co., Ltd..) [HKLM][64Bits] -- InstallShield_{AF7E85DC-317C-47F5-810E-B82EE093A612}
O42 - Logiciel: Samsung New PC Studio USB Driver Installer - (.Samsung Electronics Co., Ltd..) [HKLM][64Bits] -- {AF7E85DC-317C-47F5-810E-B82EE093A612}
O42 - Logiciel: SamsungConnectivityCableDriver - (.Samsung.) [HKLM][64Bits] -- {7E84FAC8-C518-40F9-9807-7455301D6D25}
O42 - Logiciel: Serveur Média - (.PacketVideo.) [HKLM][64Bits] -- TwonkyMediaServeur Média
O42 - Logiciel: Skype™ 6.11 - (.Skype Technologies S.A..) [HKLM][64Bits] -- {4E76FF7E-AEBA-4C87-B788-CD47E5425B9D}
O42 - Logiciel: SlimDX Redistributable (February 2010) - (.SlimDX Group.) [HKLM][64Bits] -- {7748F5D9-4725-44F4-B1E8-3CB9BB843418}
O42 - Logiciel: Slip - (...) [HKLM][64Bits] -- U2xpcA==_is1
O42 - Logiciel: SmartCopy - (.Northstar Systems Corp..) [HKLM][64Bits] -- {B7BD291B-D415-4484-89A4-82077504BE93}_is1
O42 - Logiciel: SmartLauncher - (.Northstar Systems Corp..) [HKLM][64Bits] -- {57634571-FD82-4BEC-B822-A1ED7765474F}_is1
O42 - Logiciel: SmartWeb - (.SoftBrain Technologies Ltd..) [HKLM][64Bits] -- SmartWeb =>PUP.SmartWeb
O42 - Logiciel: Spybot - Search & Destroy - (.Safer Networking Limited.) [HKLM][64Bits] -- {B4092C6D-E886-4CB2-BA68-FE5A88D31DE6}_is1
O42 - Logiciel: Steam - (.Valve Corporation.) [HKLM][64Bits] -- {048298C9-A4D3-490B-9FF9-AB023A9238F3}
O42 - Logiciel: Stick It To The Man! - (.Ripstone.) [HKLM][64Bits] -- Stick It To The Man!_is1
O42 - Logiciel: StormWatch - (.StormWatch.) [HKLM][64Bits] -- StormWatch =>PUP.StormWatch
O42 - Logiciel: UE3Redist - (.Epic Games.) [HKCU][64Bits] -- InstallShield_{6530FDAA-5B1F-4830-95BB-650E9804D239}
O42 - Logiciel: UE3Redist - (.Epic Games.) [HKLM][64Bits] -- {6530FDAA-5B1F-4830-95BB-650E9804D239}
O42 - Logiciel: URL2JPEG 1.1 - (...) [HKLM][64Bits] -- URL2JPEG_is1
O42 - Logiciel: Ubisoft Game Launcher - (.UBISOFT.) [HKLM][64Bits] -- {888F1505-C2B3-4FDE-835D-36353EBD4754}
O42 - Logiciel: UltraISO Premium V9.33 - (...) [HKLM][64Bits] -- UltraISO_is1
O42 - Logiciel: Unity Web Player - (.Unity Technologies ApS.) [HKCU][64Bits] -- UnityWebPlayer
O42 - Logiciel: Unlocker 1.9.1-x64 - (.Cedrick Collomb.) [HKLM][64Bits] -- Unlocker
O42 - Logiciel: Uplay - (.Ubisoft.) [HKLM][64Bits] -- Uplay
O42 - Logiciel: VLC media player 2.0.7 - (.VideoLAN.) [HKLM][64Bits] -- VLC media player =>.VideoLAN
O42 - Logiciel: VirtualDJ Home FREE - (.Atomix Productions.) [HKLM][64Bits] -- {77C2D5D4-ADC5-49F9-B36E-5992FCF35EA3}
O42 - Logiciel: Visual C++ 2008 x86 Runtime - (v9.0.30729) - (.Microsoft Corporation.) [HKLM][64Bits] -- {F333A33D-125C-32A2-8DCE-5C5D14231E27}
O42 - Logiciel: Visual C++ 2008 x86 Runtime - v9.0.30729.01 - (.Microsoft Corporation.) [HKLM][64Bits] -- {F333A33D-125C-32A2-8DCE-5C5D14231E27}.vc_x86runtime_30729_01
O42 - Logiciel: WBFS Manager 3.0 - (.AlexDP.) [HKLM][64Bits] -- WBFS Manager 3.0
O42 - Logiciel: Wajam - (.WaNetworkEnhance.) [HKLM][64Bits] -- WaNetworkEnhance =>PUP.Wajam
O42 - Logiciel: WavePad - Logiciel d'édition audio - (.NCH Software.) [HKLM][64Bits] -- WavePad
O42 - Logiciel: WinPcap 4.1.2 - (.CACE Technologies.) [HKLM][64Bits] -- WinPcapInst
O42 - Logiciel: WinSCP 4.1.8 - (.Martin Prikryl.) [HKLM][64Bits] -- winscp3_is1
O42 - Logiciel: Windows Media Player Firefox Plugin - (.Microsoft Corp.) [HKLM][64Bits] -- {69FDFBB6-351D-4B8C-89D8-867DC9D0A2A4} =>.Microsoft Corporation
O42 - Logiciel: YouTube Video Downloader 2.6.8 - (.Tomato.) [HKLM][64Bits] -- YouTube Video Downloader_is1
O42 - Logiciel: Zylom Games Player Plugin - (.Zylom Games.) [HKLM][64Bits] -- Zylom Games Player Plugin
O42 - Logiciel: aMSN 0.98.3 - (...) [HKLM][64Bits] -- aMSN
O42 - Logiciel: cspep.0 - (.cspep.) [HKLM][64Bits] -- cspep_is1
O42 - Logiciel: dBpoweramp DSP Effects - (.Illustrate.) [HKLM][64Bits] -- dBpoweramp DSP Effects
O42 - Logiciel: dBpoweramp Music Converter - (.Illustrate.) [HKLM][64Bits] -- dBpoweramp Music Converter
O42 - Logiciel: eMule - (...) [HKLM][64Bits] -- eMule
O42 - Logiciel: eSobi v2 - (.esobi Inc..) [HKLM][64Bits] -- InstallShield_{15D967B5-A4BE-42AE-9E84-64CD062B25AA}
O42 - Logiciel: livebox - (.SAGEM.) [HKLM][64Bits] -- {17342E3B-0818-4A6F-BFF8-99476605ADD6}
O42 - Logiciel: mIRC - (.mIRC Co. Ltd..) [HKLM][64Bits] -- mIRC
O42 - Logiciel: mkv2vob - (.3r1c.) [HKLM][64Bits] -- {21AE04E8-EBF6-40DB-9AA9-B7A80C5D057D}
O42 - Logiciel: neroxml - (.Nero AG.) [HKLM][64Bits] -- {56C049BE-79E9-4502-BEA7-9754A3E60F9B}
O42 - Logiciel: µTorrent - (.BitTorrent Inc..) [HKCU][64Bits] -- uTorrent =>P2P.BitTorrent
O42 - Logiciel: µTorrent - (.BitTorrent Inc..) [HKLM][64Bits] -- uTorrent =>P2P.BitTorrent
~ Logic: 161 Scanned in 00mn 00s



---\\ HKCU & HKLM Software Keys
[HKCU\Software\3Dduo]
[HKCU\Software\573f533c]
[HKCU\Software\7-Zip]
[HKCU\Software\AC3Filter]
[HKCU\Software\ACE Compression Software]
[HKCU\Software\ACXWGNVQ]
[HKCU\Software\ALWIL Software]
[HKCU\Software\AOL]
[HKCU\Software\APN PIP]
[HKCU\Software\ASProtect]
[HKCU\Software\ATI Technologies Inc.]
[HKCU\Software\ATI]
[HKCU\Software\AVAST Software]
[HKCU\Software\Accmeware Corporation]
[HKCU\Software\Acer]
[HKCU\Software\Activision]
[HKCU\Software\Administrator]
[HKCU\Software\Adobe]
[HKCU\Software\Alawar]
[HKCU\Software\Albedo Games]
[HKCU\Software\Alcohol Soft]
[HKCU\Software\AlienBreed3]
[HKCU\Software\Alkemi]
[HKCU\Software\Angry Mob Games]
[HKCU\Software\AnyProtect] =>PUP.AnyProtect
[HKCU\Software\AppDataLow\Software\BlockAndSurf] =>PUP.BlockAndSurf
[HKCU\Software\AppDataLow\Software\Crossrider] =>PUP.CrossRider
[HKCU\Software\AppDataLow\Software\Google]
[HKCU\Software\AppDataLow\Software\JavaSoft]
[HKCU\Software\AppDataLow\Software\SmartWeb] =>PUP.SmartWeb
[HKCU\Software\AppDataLow\Software\Unity]
[HKCU\Software\AppDataLow\{1146AC44-2F03-4431-B4FD-889BC837521F}]
[HKCU\Software\AppDataLow]
[HKCU\Software\Arachnid Games]
[HKCU\Software\ArcSoft]
[HKCU\Software\ArenaHD]
[HKCU\Software\Arkane]
[HKCU\Software\Arobas Music]
[HKCU\Software\Audacity]
[HKCU\Software\BGsoft]
[HKCU\Software\Balls]
[HKCU\Software\Behaviour]
[HKCU\Software\Bit Barons GmbH]
[HKCU\Software\BitTorrent] =>P2P.BitTorrent
[HKCU\Software\Blizzard Entertainment]
[HKCU\Software\BlueRippleSound]
[HKCU\Software\Boonty]
[HKCU\Software\Bootsnake Games]
[HKCU\Software\Brorsoft]
[HKCU\Software\CDDB]
[HKCU\Software\Camel 101]
[HKCU\Software\CanonBJ]
[HKCU\Software\Canon]
[HKCU\Software\Caphyon]
[HKCU\Software\Caprice32]
[HKCU\Software\Cenega Poland]
[HKCU\Software\Centauri]
[HKCU\Software\ChenzoPark]
[HKCU\Software\Cinema PlusV14.04-ntf] =>PUP.CrossRider
[HKCU\Software\Cinema PlusV14.04-nv-ie] =>PUP.CrossRider
[HKCU\Software\Cinema PlusV14.04-nv] =>PUP.CrossRider
[HKCU\Software\CinemaPlusV14.04-ntf]
[HKCU\Software\Cipher Prime Studios, Inc.]
[HKCU\Software\Classes]
[HKCU\Software\Clients]
[HKCU\Software\Climax]
[HKCU\Software\ClockworkPixels]
[HKCU\Software\Conduit] =>Toolbar.Conduit
[HKCU\Software\CoreAAC]
[HKCU\Software\Coreplay]
[HKCU\Software\Crescent Moon Games]
[HKCU\Software\Criterion Games]
[HKCU\Software\Crystal Dynamics]
[HKCU\Software\Cyanide]
[HKCU\Software\CyberLink]
[HKCU\Software\Cygnus Solutions]
[HKCU\Software\DSS]
[HKCU\Software\DT Soft]
[HKCU\Software\DVD Shrink]
[HKCU\Software\DarkEnergy]
[HKCU\Software\DarkWaterStudios]
[HKCU\Software\Darkwind Media]
[HKCU\Software\Disc Soft]
[HKCU\Software\DotEmu]
[HKCU\Software\Double11]
[HKCU\Software\DownloadToolz]
[HKCU\Software\Drop Spider Games]
[HKCU\Software\E-Line Media]
[HKCU\Software\EA Games]
[HKCU\Software\EMU]
[HKCU\Software\EPSON]
[HKCU\Software\EasyBoot Systems]
[HKCU\Software\EclipseGames]
[HKCU\Software\Eidos]
[HKCU\Software\Electronic Arts]
[HKCU\Software\Epic Games]
[HKCU\Software\FANiSO]
[HKCU\Software\FLT]
[HKCU\Software\FNW]
[HKCU\Software\FTPRush]
[HKCU\Software\Firebase]
[HKCU\Software\FlashFXP]
[HKCU\Software\FlyOrDie]
[HKCU\Software\Focus]
[HKCU\Software\Forsaken Pad]
[HKCU\Software\FreeTime]
[HKCU\Software\Freeware]
[HKCU\Software\Frozen Codebase]
[HKCU\Software\GNU]
[HKCU\Software\GOG.com]
[HKCU\Software\GRE]
[HKCU\Software\Gabest]
[HKCU\Software\GameSpy]
[HKCU\Software\Google]
[HKCU\Software\Grendel Games]
[HKCU\Software\Guillaume Lacasa]
[HKCU\Software\HP Photo Creations]
[HKCU\Software\HP]
[HKCU\Software\Haali]
[HKCU\Software\Hashbang Games]
[HKCU\Software\Heavy Iron Studios Inc.]
[HKCU\Software\Hewlett-Packard]
[HKCU\Software\HighDefAction]
[HKCU\Software\HomeTab] =>PUP.CertifiedToolbar
[HKCU\Software\IM Providers]
[HKCU\Software\IO Interactive]
[HKCU\Software\Icaros]
[HKCU\Software\Illustrate]
[HKCU\Software\Imagination Technologies]
[HKCU\Software\InstalledBrowserExtensions] =>PUP.BrowserExtensions
[HKCU\Software\Intel]
[HKCU\Software\JavaSoft]
[HKCU\Software\JustCause2]
[HKCU\Software\Kromtech]
[HKCU\Software\LAV]
[HKCU\Software\LCD Gamma]
[HKCU\Software\Leadertech]
[HKCU\Software\Licenses]
[HKCU\Software\Local AppWizard-Generated Applications]
[HKCU\Software\Locked Door Puzzle]
[HKCU\Software\LogMeInRescueCallingCard]
[HKCU\Software\LucasArts]
[HKCU\Software\MIX Studio]
[HKCU\Software\MOHWSplash]
[HKCU\Software\Macromedia]
[HKCU\Software\Macrovision]
[HKCU\Software\Malwarebytes' Anti-Malware]
[HKCU\Software\MandarkLib]
[HKCU\Software\Manic]
[HKCU\Software\Martin Prikryl]
[HKCU\Software\Maximize Games]
[HKCU\Software\MediaInfo]
[HKCU\Software\MediaWork]
[HKCU\Software\Meridian93]
[HKCU\Software\Michael Todd Games]
[HKCU\Software\Might and Delight]
[HKCU\Software\Mike Bithell]
[HKCU\Software\Mobileleader]
[HKCU\Software\MoonSpiderStudio]
[HKCU\Software\MozillaPlugins]
[HKCU\Software\Mozilla]
[HKCU\Software\Mr QuestionMan]
[HKCU\Software\MuseGames]
[HKCU\Software\NCH Software]
[HKCU\Software\NVIDIA Corporation]
[HKCU\Software\Namco Bandai Games]
[HKCU\Software\Native Instruments]
[HKCU\Software\Nero]
[HKCU\Software\Netscape]
[HKCU\Software\NewTech Infosystems]
[HKCU\Software\No Reply Games]
[HKCU\Software\Northcode Inc]
[HKCU\Software\ODBC]
[HKCU\Software\OXXOgames]
[HKCU\Software\Oberon Media]
[HKCU\Software\OpenAutomate]
[HKCU\Software\OpenOffice.org]
[HKCU\Software\Optimizer Pro] =>PUP.OptimizerPro
[HKCU\Software\Orange]
[HKCU\Software\Owlchemy Labs]
[HKCU\Software\PYSAL]
[HKCU\Software\PabloDraw]
[HKCU\Software\Phobic Studios]
[HKCU\Software\Phobosoft]
[HKCU\Software\Piriform]
[HKCU\Software\Piwot Games]
[HKCU\Software\Playlogic]
[HKCU\Software\Pogo]
[HKCU\Software\Policies]
[HKCU\Software\PopCap]
[HKCU\Software\Press Play]
[HKCU\Software\ProductSetup] =>Adware.InstallCore
[HKCU\Software\Protect Software GmbH]
[HKCU\Software\QtProject]
[HKCU\Software\Quantized Bit]
[HKCU\Software\RadLight]
[HKCU\Software\Radiangames]
[HKCU\Software\Razer]
[HKCU\Software\Real]
[HKCU\Software\Really Slick]
[HKCU\Software\Realtek]
[HKCU\Software\Recoil Games]
[HKCU\Software\Red Head Games]
[HKCU\Software\RedLynx Ltd]
[HKCU\Software\Reg]
[HKCU\Software\Reptile]
[HKCU\Software\RetroEpic]
[HKCU\Software\RetroStyle Games]
[HKCU\Software\Rocket Jump]
[HKCU\Software\Rockstar Games]
[HKCU\Software\Rovio]
[HKCU\Software\SIComponents]
[HKCU\Software\SMTTB2009]
[HKCU\Software\SSA]
[HKCU\Software\STUDIO EVIL]
[HKCU\Software\Safer Networking Limited]
[HKCU\Software\Samsung]
[HKCU\Software\Santa Ragione]
[HKCU\Software\SearchProtectWS] =>PUP.SearchProtect
[HKCU\Software\Sector3]
[HKCU\Software\Serious Brew]
[HKCU\Software\Serious Samurize]
[HKCU\Software\SimonTatham]
[HKCU\Software\SimplyTech] =>PUP.SimplyTech
[HKCU\Software\Skidrow]
[HKCU\Software\Skype]
[HKCU\Software\SmashMouthGames]
[HKCU\Software\Spark Plug Games]
[HKCU\Software\SpoonInstall]
[HKCU\Software\StormWatchApp] =>PUP.StormWatch
[HKCU\Software\Swing Swing Submarine]
[HKCU\Software\THETA AnIn]
[HKCU\Software\TNT2] =>Adware.TidyNetwork
[HKCU\Software\Techtonic Games Inc]
[HKCU\Software\TeleCharger]
[HKCU\Software\TeleCharger_v2]
[HKCU\Software\TomTom]
[HKCU\Software\Tomato]
[HKCU\Software\Trolltech]
[HKCU\Software\Turtle Beach]
[HKCU\Software\TutoTag] =>PUP.AgenceExclusive
[HKCU\Software\Tutorials] =>PUP.AgenceExclusive
[HKCU\Software\Two Tribes]
[HKCU\Software\UNCANNY GAMES]
[HKCU\Software\Ubisoft]
[HKCU\Software\Unity]
[HKCU\Software\Unlimited Possibilities]
[HKCU\Software\Upper Byte]
[HKCU\Software\VB and VBA Program Settings]
[HKCU\Software\Valve]
[HKCU\Software\Vectorpark.com]
[HKCU\Software\VideoToMp3]
[HKCU\Software\VirtualDJ]
[HKCU\Software\VirtualDub.org]
[HKCU\Software\Visan]
[HKCU\Software\Volition]
[HKCU\Software\WIISCRUBBER]
[HKCU\Software\WXP]
[HKCU\Software\WaNetworkEnhance]
[HKCU\Software\WajIEnhance] =>PUP.Wajam
[HKCU\Software\WinRAR SFX]
[HKCU\Software\WinRAR]
[HKCU\Software\WinSTEP2000]
[HKCU\Software\Wow6432Node]
[HKCU\Software\YorkNewCin]
[HKCU\Software\ZebHelpProcess Helper]
[HKCU\Software\Zoink Games]
[HKCU\Software\Zylom]
[HKCU\Software\Zyrax Software]
[HKCU\Software\aMSN]
[HKCU\Software\cspep]
[HKCU\Software\eMule]
[HKCU\Software\globalUpdate] =>PUP.GlobalUpdate
[HKCU\Software\iWin]
[HKCU\Software\mIRC]
[HKCU\Software\madshi]
[HKCU\Software\phime studio]
[HKCU\Software\systweak]
[HKLM\Software\AGEIA Technologies]
[HKLM\Software\AMD]
[HKLM\Software\ASIO]
[HKLM\Software\ATI Technologies]
[HKLM\Software\ATI]
[HKLM\Software\Acer]
[HKLM\Software\Adobe]
[HKLM\Software\Apple Inc.]
[HKLM\Software\ArenaHD]
[HKLM\Software\Audible]
[HKLM\Software\Canon]
[HKLM\Software\Classes]
[HKLM\Software\Clients]
[HKLM\Software\Cyberlink]
[HKLM\Software\DEVGURU]
[HKLM\Software\EA GAMES]
[HKLM\Software\FileZilla 3]
[HKLM\Software\HP]
[HKLM\Software\Hauppauge]
[HKLM\Software\HighDefAction]
[HKLM\Software\IM Providers]
[HKLM\Software\InstalledBrowserExtensions] =>PUP.BrowserExtensions
[HKLM\Software\Intel]
[HKLM\Software\Khronos]
[HKLM\Software\Llamasoft]
[HKLM\Software\MCCI]
[HKLM\Software\Macromedia]
[HKLM\Software\Martin Prikryl]
[HKLM\Software\MozillaPlugins]
[HKLM\Software\Mozilla]
[HKLM\Software\NVIDIA Corporation]
[HKLM\Software\Native Instruments]
[HKLM\Software\ODBC]
[HKLM\Software\OemSetup]
[HKLM\Software\PC Connectivity Solution]
[HKLM\Software\Piriform]
[HKLM\Software\Policies]
[HKLM\Software\Realtek Semiconductor Corp.]
[HKLM\Software\Realtek]
[HKLM\Software\RegisteredApplications]
[HKLM\Software\SRS Labs]
[HKLM\Software\Sonic]
[HKLM\Software\VDownloader]
[HKLM\Software\VideoLAN]
[HKLM\Software\WinRAR]
[HKLM\Software\Wow6432Node\2bd8d77a-dee4-4beb-9e08-3100d5bfbff9] =>PUP.CrossRider
[HKLM\Software\Wow6432Node\A Day in the Woods]
[HKLM\Software\Wow6432Node\ACE Compression Software]
[HKLM\Software\Wow6432Node\AGEIA Technologies]
[HKLM\Software\Wow6432Node\AIM Toolbar]
[HKLM\Software\Wow6432Node\ALWIL Software]
[HKLM\Software\Wow6432Node\ASIO]
[HKLM\Software\Wow6432Node\ATI Technologies]
[HKLM\Software\Wow6432Node\ATI]
[HKLM\Software\Wow6432Node\AVAST Software]
[HKLM\Software\Wow6432Node\Acer Incorporated]
[HKLM\Software\Wow6432Node\Acer]
[HKLM\Software\Wow6432Node\Activision]
[HKLM\Software\Wow6432Node\Adobe]
[HKLM\Software\Wow6432Node\AdwCleaner]
[HKLM\Software\Wow6432Node\AheadUpdate]
[HKLM\Software\Wow6432Node\America Online]
[HKLM\Software\Wow6432Node\AppDataLow]
[HKLM\Software\Wow6432Node\Apple Computer, Inc.]
[HKLM\Software\Wow6432Node\Apple Inc.]
[HKLM\Software\Wow6432Node\ArcSoft]
[HKLM\Software\Wow6432Node\ArenaHD]
[HKLM\Software\Wow6432Node\Audible]
[HKLM\Software\Wow6432Node\AviSynth]
[HKLM\Software\Wow6432Node\Bethesda Softworks]
[HKLM\Software\Wow6432Node\Blizzard Entertainment]
[HKLM\Software\Wow6432Node\BlueRippleSound]
[HKLM\Software\Wow6432Node\Boonty]
[HKLM\Software\Wow6432Node\Canon]
[HKLM\Software\Wow6432Node\Canon_Inc_IC]
[HKLM\Software\Wow6432Node\Caphyon]
[HKLM\Software\Wow6432Node\Cinema PlusV14.04-nv-ie] =>PUP.CrossRider
[HKLM\Software\Wow6432Node\Cinema PlusV14.04-nv] =>PUP.CrossRider
[HKLM\Software\Wow6432Node\Classes]
[HKLM\Software\Wow6432Node\Clients]
[HKLM\Software\Wow6432Node\Coalesys]
[HKLM\Software\Wow6432Node\Codemasters]
[HKLM\Software\Wow6432Node\Conduit] =>Toolbar.Conduit
[HKLM\Software\Wow6432Node\Croteam]
[HKLM\Software\Wow6432Node\Crown Software]
[HKLM\Software\Wow6432Node\CyberLink]
[HKLM\Software\Wow6432Node\Cygnus Solutions]
[HKLM\Software\Wow6432Node\DT Soft]
[HKLM\Software\Wow6432Node\DVDVIDEOSOFT]
[HKLM\Software\Wow6432Node\Danger Close Games]
[HKLM\Software\Wow6432Node\Digital River]
[HKLM\Software\Wow6432Node\DigitalMore] =>PUP.DigitalMore
[HKLM\Software\Wow6432Node\Disc Soft]
[HKLM\Software\Wow6432Node\DotEmu]
[HKLM\Software\Wow6432Node\DownloadHelper]
[HKLM\Software\Wow6432Node\EA Games]
[HKLM\Software\Wow6432Node\ETeam]
[HKLM\Software\Wow6432Node\EasyBoot Systems]
[HKLM\Software\Wow6432Node\Electronic Arts]
[HKLM\Software\Wow6432Node\Extend Studio]
[HKLM\Software\Wow6432Node\FRANCE TELECOM]
[HKLM\Software\Wow6432Node\FileZilla 3]
[HKLM\Software\Wow6432Node\FlashFXP]
[HKLM\Software\Wow6432Node\GAMESDESKTOP] =>Adware.GamesDesktop
[HKLM\Software\Wow6432Node\GNU]
[HKLM\Software\Wow6432Node\GOG.com]
[HKLM\Software\Wow6432Node\Gamepires]
[HKLM\Software\Wow6432Node\GlobalUpdate] =>PUP.GlobalUpdate
[HKLM\Software\Wow6432Node\Google]
[HKLM\Software\Wow6432Node\HaaliMkx]
[HKLM\Software\Wow6432Node\Hauppauge]
[HKLM\Software\Wow6432Node\Hewlett-Packard]
[HKLM\Software\Wow6432Node\HighDefAction]
[HKLM\Software\Wow6432Node\IHProtect] =>Adware.AgentODR
[HKLM\Software\Wow6432Node\IM Providers]
[HKLM\Software\Wow6432Node\Icaros]
[HKLM\Software\Wow6432Node\Iminent] =>Adware.IMBooster
[HKLM\Software\Wow6432Node\InstalledBrowserExtensions] =>PUP.BrowserExtensions
[HKLM\Software\Wow6432Node\Intel]
[HKLM\Software\Wow6432Node\Interface]
[HKLM\Software\Wow6432Node\JavaSoft]
[HKLM\Software\Wow6432Node\JreMetrics]
[HKLM\Software\Wow6432Node\KLCodecPack]
[HKLM\Software\Wow6432Node\Khronos]
[HKLM\Software\Wow6432Node\LAV]
[HKLM\Software\Wow6432Node\Lame For Audacity]
[HKLM\Software\Wow6432Node\Licenses]
[HKLM\Software\Wow6432Node\LightScribe]
[HKLM\Software\Wow6432Node\Llamasoft]
[HKLM\Software\Wow6432Node\LogMeInRescueCallingCard]
[HKLM\Software\Wow6432Node\Macromedia]
[HKLM\Software\Wow6432Node\Malwarebytes' Anti-Malware]
[HKLM\Software\Wow6432Node\MarkAny]
[HKLM\Software\Wow6432Node\Martin Prikryl]
[HKLM\Software\Wow6432Node\MediaArea.net]
[HKLM\Software\Wow6432Node\MimarSinan]
[HKLM\Software\Wow6432Node\Mindscape]
[HKLM\Software\Wow6432Node\Moyea]
[HKLM\Software\Wow6432Node\MozillaPlugins]
[HKLM\Software\Wow6432Node\Mozilla]
[HKLM\Software\Wow6432Node\NCH Software]
[HKLM\Software\Wow6432Node\NVIDIA Corporation]
[HKLM\Software\Wow6432Node\Nero]
[HKLM\Software\Wow6432Node\NewTech Infosystems]
[HKLM\Software\Wow6432Node\Novacore Studios]
[HKLM\Software\Wow6432Node\Nth]
[HKLM\Software\Wow6432Node\ODBC]
[HKLM\Software\Wow6432Node\Oberon Media]
[HKLM\Software\Wow6432Node\OpenOffice.org]
[HKLM\Software\Wow6432Node\Orange]
[HKLM\Software\Wow6432Node\Origin]
[HKLM\Software\Wow6432Node\PC Connectivity Solution]
[HKLM\Software\Wow6432Node\PCSuite]
[HKLM\Software\Wow6432Node\Playbrains]
[HKLM\Software\Wow6432Node\Policies]
[HKLM\Software\Wow6432Node\Realtek Semiconductor Corp.]
[HKLM\Software\Wow6432Node\Realtek]
[HKLM\Software\Wow6432Node\Reflexive Entertainment]
[HKLM\Software\Wow6432Node\ReflexiveArcade]
[HKLM\Software\Wow6432Node\Reg]
[HKLM\Software\Wow6432Node\RegisteredApplications]
[HKLM\Software\Wow6432Node\RocketLife]
[HKLM\Software\Wow6432Node\Rockstar Games]
[HKLM\Software\Wow6432Node\SEGA]
[HKLM\Software\Wow6432Node\Saber Interactive]
[HKLM\Software\Wow6432Node\Safer Networking Limited]
[HKLM\Software\Wow6432Node\Sagem]
[HKLM\Software\Wow6432Node\Samsung Electronics Ltd.]
[HKLM\Software\Wow6432Node\Samsung]
[HKLM\Software\Wow6432Node\Services]
[HKLM\Software\Wow6432Node\Sierra Entertainment]
[HKLM\Software\Wow6432Node\Sierra]
[HKLM\Software\Wow6432Node\SiteAdvisor]
[HKLM\Software\Wow6432Node\Skype]
[HKLM\Software\Wow6432Node\SmashMouthGames]
[HKLM\Software\Wow6432Node\SpeedBit]
[HKLM\Software\Wow6432Node\Spidermonk Entertainment]
[HKLM\Software\Wow6432Node\Square Enix]
[HKLM\Software\Wow6432Node\StormWatchApp] =>PUP.StormWatch
[HKLM\Software\Wow6432Node\Sun Microsystems]
[HKLM\Software\Wow6432Node\SupDp] =>PUP.SupTab
[HKLM\Software\Wow6432Node\Systweak]
[HKLM\Software\Wow6432Node\Techland]
[HKLM\Software\Wow6432Node\Trolltech]
[HKLM\Software\Wow6432Node\Trymedia Systems] =>Adware.Trymedia
[HKLM\Software\Wow6432Node\Tutorials] =>PUP.AgenceExclusive
[HKLM\Software\Wow6432Node\TwonkyMedia]
[HKLM\Software\Wow6432Node\Ubisoft]
[HKLM\Software\Wow6432Node\Unreal]
[HKLM\Software\Wow6432Node\VDownloader]
[HKLM\Software\Wow6432Node\Valve]
[HKLM\Software\Wow6432Node\VideoToMp3]
[HKLM\Software\Wow6432Node\VirtualDJ]
[HKLM\Software\Wow6432Node\VirtualDubMOD 1.5.10.2 b2540 Fr]
[HKLM\Software\Wow6432Node\Visan]
[HKLM\Software\Wow6432Node\Volatile]
[HKLM\Software\Wow6432Node\Volition]
[HKLM\Software\Wow6432Node\WinPcap]
[HKLM\Software\Wow6432Node\Windows]
[HKLM\Software\Wow6432Node\XLiveEmulator]
[HKLM\Software\Wow6432Node\YorkNewCin]
[HKLM\Software\Wow6432Node\Zeroscale Games]
[HKLM\Software\Wow6432Node\Zoe Mode]
[HKLM\Software\Wow6432Node\ahead]
[HKLM\Software\Wow6432Node\ea30e8eb-2ca4-474b-0194-b4395eed20e4] =>PUP.CrossRider
[HKLM\Software\Wow6432Node\luckysearchesSoftware] =>Hijacker.LuckySearches
[HKLM\Software\Wow6432Node\mozilla.org]
[HKLM\Software\Wow6432Node\supTab] =>PUP.SupTab
[HKLM\Software\Wow6432Node\sweet-pageSoftware] =>PUP.SweetPage
[HKLM\Software\Wow6432Node]
[HKLM\Software\YorkNewCin]
~ Key Software: 917 Scanned in 00mn 01s



---\\ Contenu des dossiers Programs/ProgramFiles/ProgramData/AppData (O43)
O43 - CFD: 15/04/2015 - 09:58:17 - [] ----D C:\Program Files (x86)\092286ba-0823-44c3-a540-fc0ca0f85d2c
O43 - CFD: 11/09/2012 - 23:44:29 - [0] ----D C:\Program Files (x86)\2K Games
O43 - CFD: 15/04/2015 - 09:58:17 - [] ----D C:\Program Files (x86)\2XL Games
O43 - CFD: 16/01/2011 - 12:18:58 - [] ----D C:\Program Files (x86)\7-Zip
O43 - CFD: 11/01/2009 - 04:56:10 - [] ----D C:\Program Files (x86)\Acer
O43 - CFD: 11/01/2009 - 05:07:04 - [] ----D C:\Program Files (x86)\Acer Arcade Live
O43 - CFD: 08/11/2014 - 19:12:45 - [] ----D C:\Program Files (x86)\Acer GameZone
O43 - CFD: 11/07/2009 - 10:40:28 - [] ----D C:\Program Files (x86)\Acer Incorporated
O43 - CFD: 21/11/2012 - 22:55:53 - [0] ----D C:\Program Files (x86)\Activision
O43 - CFD: 29/09/2012 - 21:17:49 - [] ----D C:\Program Files (x86)\Adobe
O43 - CFD: 13/11/2011 - 17:49:52 - [] ----D C:\Program Files (x86)\Adobe Media Player
O43 - CFD: 04/06/2011 - 00:03:10 - [] ----D C:\Program Files (x86)\AGEIA Technologies
O43 - CFD: 28/11/2010 - 23:46:38 - [] ----D C:\Program Files (x86)\Alawar
O43 - CFD: 13/11/2009 - 16:53:43 - [] ----D C:\Program Files (x86)\Alcohol Soft
O43 - CFD: 14/02/2013 - 19:53:43 - [] ----D C:\Program Files (x86)\ALLGRAF
O43 - CFD: 19/04/2012 - 22:48:24 - [0] ----D C:\Program Files (x86)\Amanita Design
O43 - CFD: 22/06/2012 - 22:22:16 - [] ----D C:\Program Files (x86)\AMD APP
O43 - CFD: 28/09/2010 - 15:49:30 - [] ----D C:\Program Files (x86)\aMSN
O43 - CFD: 17/12/2013 - 21:47:17 - [] ----D C:\Program Files (x86)\Another World
O43 - CFD: 09/02/2013 - 12:50:31 - [] ----D C:\Program Files (x86)\Antichamber
O43 - CFD: 01/08/2010 - 14:49:05 - [] ----D C:\Program Files (x86)\Anuman interactive
O43 - CFD: 15/04/2015 - 11:00:24 - [] ----D C:\Program Files (x86)\AnyProtectEx =>PUP.AnyProtect
O43 - CFD: 13/08/2010 - 02:42:20 - [] ----D C:\Program Files (x86)\ARC SYSTEM WORKS
O43 - CFD: 15/04/2015 - 11:05:24 - [] ----D C:\Program Files (x86)\ASP
O43 - CFD: 06/01/2011 - 21:20:02 - [] ----D C:\Program Files (x86)\Aspyr
O43 - CFD: 30/01/2011 - 19:21:35 - [] ----D C:\Program Files (x86)\Astroslugs.RIP-Unleashed
O43 - CFD: 01/06/2011 - 18:20:45 - [0] ----D C:\Program Files (x86)\Atari
O43 - CFD: 23/04/2012 - 10:15:06 - [] ----D C:\Program Files (x86)\ATI Technologies
O43 - CFD: 10/01/2012 - 22:33:58 - [] ----D C:\Program Files (x86)\Audacity 1.3 Beta (Unicode)
O43 - CFD: 07/07/2010 - 22:18:56 - [] ----D C:\Program Files (x86)\AviSynth 2.5
O43 - CFD: 08/08/2009 - 15:41:48 - [] ----D C:\Program Files (x86)\Bad Rats
O43 - CFD: 07/01/2012 - 15:13:40 - [] ----D C:\Program Files (x86)\Batman - Arkham City
O43 - CFD: 28/02/2015 - 20:11:50 - [] ----D C:\Program Files (x86)\Battle.net
O43 - CFD: 25/10/2011 - 18:09:49 - [] ----D C:\Program Files (x86)\Battlefield 3
O43 - CFD: 09/10/2012 - 22:21:37 - [] ----D C:\Program Files (x86)\Bethesda Softworks
O43 - CFD: 03/03/2012 - 21:50:47 - [0] ----D C:\Program Files (x86)\Biart
O43 - CFD: 11/03/2013 - 19:42:41 - [0] ----D C:\Program Files (x86)\Black Forest Games
O43 - CFD: 05/09/2010 - 12:52:19 - [0] ----D C:\Program Files (x86)\Blast! Entertainment Ltd
O43 - CFD: 13/12/2014 - 20:23:08 - [] ----D C:\Program Files (x86)\Bonjour
O43 - CFD: 11/08/2010 - 20:42:05 - [] ----D C:\Program Files (x86)\BoontyGames
O43 - CFD: 11/02/2013 - 11:57:52 - [] ----D C:\Program Files (x86)\Brorsoft
O43 - CFD: 15/11/2012 - 06:43:59 - [] ----D C:\Program Files (x86)\BRS
O43 - CFD: 27/02/2013 - 00:47:02 - [] ----D C:\Program Files (x86)\Brutal Legend
O43 - CFD: 29/01/2012 - 17:50:11 - [] ----D C:\Program Files (x86)\Bust_n_Rush
O43 - CFD: 12/02/2015 - 21:35:52 - [] ----D C:\Program Files (x86)\Canon
O43 - CFD: 05/05/2012 - 09:05:21 - [] ----D C:\Program Files (x86)\CAPCOM
O43 - CFD: 23/09/2010 - 23:04:09 - [] ----D C:\Program Files (x86)\Caprice32
O43 - CFD: 26/04/2013 - 21:16:42 - [] ----D C:\Program Files (x86)\Cargo Commander
O43 - CFD: 17/02/2015 - 00:45:44 - [] ----D C:\Program Files (x86)\CCleaner
O43 - CFD: 30/06/2013 - 21:25:10 - [0] ----D C:\Program Files (x86)\Celestial
O43 - CFD: 25/04/2013 - 08:26:02 - [] ----D C:\Program Files (x86)\Chime
O43 - CFD: 15/04/2015 - 09:58:51 - [] ----D C:\Program Files (x86)\Cinema PlusV14.04 =>PUP.CrossRider
O43 - CFD: 15/04/2015 - 09:58:01 - [0] ----D C:\Program Files (x86)\Cinema PlusV14.04-ntf =>PUP.CrossRider
O43 - CFD: 27/09/2010 - 11:39:01 - [0] ----D C:\Program Files (x86)\City Interactive
O43 - CFD: 13/09/2011 - 22:28:56 - [0] ----D C:\Program Files (x86)\Clockwork Pixels
O43 - CFD: 23/08/2013 - 15:36:18 - [] ----D C:\Program Files (x86)\Clones
O43 - CFD: 03/08/2013 - 17:43:56 - [0] ----D C:\Program Files (x86)\Cloudberry Kingdom
O43 - CFD: 16/08/2013 - 20:42:42 - [] ----D C:\Program Files (x86)\Commandos II
O43 - CFD: 11/04/2015 - 17:49:19 - [] ----D C:\Program Files (x86)\Common Files
O43 - CFD: 14/01/2011 - 07:14:07 - [] ----D C:\Program Files (x86)\Content
O43 - CFD: 14/01/2011 - 07:19:02 - [] ----D C:\Program Files (x86)\ContentXml
O43 - CFD: 29/05/2012 - 18:09:02 - [] ----D C:\Program Files (x86)\ConvertHelper
O43 - CFD: 03/08/2010 - 17:19:08 - [] ----D C:\Program Files (x86)\Cool Beans NFO Creator
O43 - CFD: 22/12/2012 - 13:10:00 - [0] ----D C:\Program Files (x86)\Crankshaft Games
O43 - CFD: 20/12/2010 - 23:07:33 - [] ----D C:\Program Files (x86)\Crash Time 4 - The Syndicate
O43 - CFD: 06/12/2012 - 18:07:26 - [] ----D C:\Program Files (x86)\cspep
O43 - CFD: 02/11/2011 - 22:46:10 - [] ----D C:\Program Files (x86)\Curve Studios
O43 - CFD: 15/08/2010 - 17:21:46 - [0] ----D C:\Program Files (x86)\Cyanide
O43 - CFD: 11/01/2009 - 05:00:43 - [] ----D C:\Program Files (x86)\CyberLink
O43 - CFD: 03/08/2013 - 08:31:20 - [] ----D C:\Program Files (x86)\DAEMON Tools Lite =>.DT Soft Ltd
O43 - CFD: 10/05/2011 - 17:37:54 - [] ----D C:\Program Files (x86)\Dark Energy Digital Ltd
O43 - CFD: 03/10/2010 - 11:46:37 - [] ----D C:\Program Files (x86)\Dark Water Studios Ltd
O43 - CFD: 19/05/2011 - 19:44:17 - [] ----D C:\Program Files (x86)\Darksiders
O43 - CFD: 04/08/2012 - 00:03:55 - [0] ----D C:\Program Files (x86)\death race
O43 - CFD: 26/11/2011 - 09:23:57 - [0] ----D C:\Program Files (x86)\Deep Silver
O43 - CFD: 06/09/2010 - 01:36:20 - [] ----D C:\Program Files (x86)\Devolver Digital
O43 - CFD: 15/04/2015 - 16:52:36 - [] ----D C:\Program Files (x86)\Digital More =>PUP.DigitalMore
O43 - CFD: 25/05/2012 - 22:09:00 - [] ----D C:\Program Files (x86)\DiRT Showdown
O43 - CFD: 21/09/2012 - 21:37:27 - [] ----D C:\Program Files (x86)\Disney Interactive Studios
O43 - CFD: 16/11/2010 - 23:15:54 - [] ----D C:\Program Files (x86)\Doc Clock The Toasted Sandwich of Time
O43 - CFD: 16/08/2010 - 01:52:06 - [0] ----D C:\Program Files (x86)\Doctor Entertainment
O43 - CFD: 28/12/2012 - 22:30:41 - [0] ----D C:\Program Files (x86)\DownloadToolz
O43 - CFD: 08/11/2014 - 19:31:51 - [] ----D C:\Program Files (x86)\Drakensang - The River of Time
O43 - CFD: 23/04/2012 - 09:22:26 - [] ----D C:\Program Files (x86)\Driver Cleaner Pro
O43 - CFD: 16/08/2010 - 22:04:46 - [] ----D C:\Program Files (x86)\Drop Spider Games
O43 - CFD: 01/02/2015 - 21:49:07 - [] ----D C:\Program Files (x86)\DVD Shrink
O43 - CFD: 01/07/2013 - 17:33:28 - [0] ----D C:\Program Files (x86)\DVDVIDEOSOFT
O43 - CFD: 30/10/2010 - 21:22:04 - [] ----D C:\Program Files (x86)\EA
O43 - CFD: 17/05/2012 - 10:14:56 - [] ----D C:\Program Files (x86)\EA Games
O43 - CFD: 02/09/2013 - 23:48:48 - [] ----D C:\Program Files (x86)\EDGE
O43 - CFD: 06/04/2012 - 18:24:31 - [] ----D C:\Program Files (x86)\Electronic Arts
O43 - CFD: 25/10/2013 - 18:18:17 - [0] ----D C:\Program Files (x86)\Electronic.Super.Joy
O43 - CFD: 13/09/2010 - 22:29:30 - [] ----D C:\Program Files (x86)\Empire Interactive
O43 - CFD: 23/07/2009 - 18:55:27 - [] ----D C:\Program Files (x86)\eMule
O43 - CFD: 15/10/2011 - 13:47:52 - [0] ----D C:\Program Files (x86)\epson
O43 - CFD: 29/05/2012 - 18:38:17 - [] ----D C:\Program Files (x86)\eRightSoft
O43 - CFD: 14/01/2011 - 07:15:10 - [] ----D C:\Program Files (x86)\es
O43 - CFD: 11/01/2009 - 05:23:09 - [] ----D C:\Program Files (x86)\eSobi
O43 - CFD: 24/10/2013 - 18:45:27 - [0] ----D C:\Program Files (x86)\Ethan Meteor Hunter MULTI18
O43 - CFD: 26/10/2012 - 21:56:36 - [] ----D C:\Program Files (x86)\Farming Simulator 2013
O43 - CFD: 20/11/2009 - 00:09:04 - [] ----D C:\Program Files (x86)\FileZilla FTP Client
O43 - CFD: 12/01/2012 - 23:36:06 - [] ----D C:\Program Files (x86)\FLAC
O43 - CFD: 18/07/2009 - 18:14:39 - [] ----D C:\Program Files (x86)\FlashFXP
O43 - CFD: 23/08/2013 - 15:36:18 - [] ----D C:\Program Files (x86)\Fly'N
O43 - CFD: 06/11/2013 - 23:02:36 - [] ----D C:\Program Files (x86)\Focus Home Interactive
O43 - CFD: 14/01/2011 - 07:14:49 - [] ----D C:\Program Files (x86)\fr
O43 - CFD: 15/04/2015 - 09:16:17 - [] ----D C:\Program Files (x86)\FreeGamePick
O43 - CFD: 23/05/2011 - 22:58:37 - [] ----D C:\Program Files (x86)\FreeTime
O43 - CFD: 14/11/2012 - 00:56:24 - [0] ----D C:\Program Files (x86)\Frozenbyte
O43 - CFD: 06/11/2011 - 15:25:42 - [] ----D C:\Program Files (x86)\FTPRush
O43 - CFD: 15/10/2011 - 14:56:48 - [0] ----D C:\Program Files (x86)\GFI
O43 - CFD: 10/10/2013 - 20:45:22 - [0] ----D C:\Program Files (x86)\Glare
O43 - CFD: 15/04/2015 - 09:58:02 - [] ----D C:\Program Files (x86)\globalUpdate =>PUP.GlobalUpdate
O43 - CFD: 15/04/2015 - 16:49:26 - [] ----D C:\Program Files (x86)\gmsd_fr_424 =>PUP.CrossRider
O43 - CFD: 29/11/2010 - 19:01:33 - [] ----D C:\Program Files (x86)\Gods vs. Humans
O43 - CFD: 12/11/2012 - 00:42:20 - [] ----D C:\Program Files (x86)\GOG.com
O43 - CFD: 09/10/2014 - 12:02:48 - [] ----D C:\Program Files (x86)\Google
O43 - CFD: 03/10/2010 - 17:34:01 - [] ----D C:\Program Files (x86)\GridRunnerREV
O43 - CFD: 04/06/2011 - 00:04:22 - [0] ----D C:\Program Files (x86)\Hamiltons Great Adventure
O43 - CFD: 28/02/2015 - 20:14:14 - [] ----D C:\Program Files (x86)\Hearthstone
O43 - CFD: 08/11/2014 - 19:12:57 - [] ----D C:\Program Files (x86)\Hell Yeah Wrath of the Dead Rabbit
O43 - CFD: 11/03/2015 - 22:47:56 - [] ----D C:\Program Files (x86)\Hotline Miami 2 - Wrong Number
O43 - CFD: 01/04/2014 - 17:35:08 - [] ----D C:\Program Files (x86)\HP
O43 - CFD: 05/10/2011 - 21:19:21 - [] ----D C:\Program Files (x86)\HP Photo Creations
O43 - CFD: 31/05/2012 - 19:32:56 - [] ----D C:\Program Files (x86)\hpmonitor
O43 - CFD: 15/04/2015 - 10:01:28 - [] ----D C:\Program Files (x86)\IGS
O43 - CFD: 07/01/2012 - 18:46:54 - [] ----D C:\Program Files (x86)\Illustrate
O43 - CFD: 18/07/2009 - 11:56:28 - [] ----D C:\Program Files (x86)\Image 2 ASCII Art
O43 - CFD: 15/04/2015 - 09:55:54 - [] ----D C:\Program Files (x86)\Infonaut_1.10.0.14 =>PUP.Infonaut
O43 - CFD: 12/01/2015 - 01:59:22 - [] --H-D C:\Program Files (x86)\InstallShield Installation Information
O43 - CFD: 11/01/2009 - 04:26:09 - [] ----D C:\Program Files (x86)\Intel
O43 - CFD: 05/03/2015 - 21:52:02 - [] ----D C:\Program Files (x86)\Internet Explorer
O43 - CFD: 16/08/2010 - 17:10:02 - [] ----D C:\Program Files (x86)\IQ Publishing
O43 - CFD: 14/01/2011 - 07:15:12 - [] ----D C:\Program Files (x86)\it
O43 - CFD: 26/06/2011 - 19:24:00 - [] ----D C:\Program Files (x86)\Jamestown
O43 - CFD: 02/08/2014 - 22:56:00 - [] ----D C:\Program Files (x86)\Java
O43 - CFD: 24/01/2011 - 23:01:07 - [] ----D C:\Program Files (x86)\JRE
O43 - CFD: 04/11/2011 - 23:24:49 - [] ----D C:\Program Files (x86)\Just A Game GmbH
O43 - CFD: 13/08/2013 - 18:12:07 - [] ----D C:\Program Files (x86)\K-Lite Codec Pack
O43 - CFD: 14/11/2012 - 00:56:47 - [0] ----D C:\Program Files (x86)\Kalypso
O43 - CFD: 12/11/2012 - 01:04:01 - [0] ----D C:\Program Files (x86)\Kalypso Media
O43 - CFD: 13/04/2015 - 17:44:21 - [] ----D C:\Program Files (x86)\Kane & Lynch 2- Dog Days
O43 - CFD: 04/05/2012 - 19:15:04 - [0] ----D C:\Program Files (x86)\Konami
O43 - CFD: 27/05/2012 - 21:25:15 - [] ----D C:\Program Files (x86)\Lame For Audacity
O43 - CFD: 12/09/2012 - 22:43:05 - [] ----D C:\Program Files (x86)\Lost Head
O43 - CFD: 29/10/2010 - 19:12:27 - [] ----D C:\Program Files (x86)\LucasArts
O43 - CFD: 15/08/2010 - 17:28:30 - [] ----D C:\Program Files (x86)\MadCars_at
O43 - CFD: 25/02/2015 - 19:46:55 - [] ----D C:\Program Files (x86)\Malwarebytes Anti-Malware
O43 - CFD: 05/02/2010 - 00:43:43 - [] ----D C:\Program Files (x86)\MarkAny
O43 - CFD: 17/12/2013 - 21:46:02 - [] ----D C:\Program Files (x86)\Marlow Briggs
O43 - CFD: 16/09/2010 - 17:37:50 - [] ----D C:\Program Files (x86)\MediaCoder
O43 - CFD: 17/04/2010 - 22:02:42 - [] ----D C:\Program Files (x86)\Metal Slug Complete PC
O43 - CFD: 31/07/2010 - 13:44:34 - [] ----D C:\Program Files (x86)\Metro 2033
O43 - CFD: 06/07/2010 - 02:43:29 - [] ----D C:\Program Files (x86)\Microsoft
O43 - CFD: 01/05/2012 - 09:14:55 - [0] ----D C:\Program Files (x86)\Microsoft Game Studios
O43 - CFD: 14/07/2009 - 12:48:12 - [] ----D C:\Program Files (x86)\Microsoft Games for Windows - LIVE
O43 - CFD: 29/06/2011 - 19:08:46 - [] ----D C:\Program Files (x86)\Microsoft Office
O43 - CFD: 11/01/2009 - 04:45:25 - [] ----D C:\Program Files (x86)\Microsoft Office Suite Activation Assistant
O43 - CFD: 03/08/2013 - 15:06:03 - [] ----D C:\Program Files (x86)\Microsoft SDKs
O43 - CFD: 05/03/2015 - 20:13:43 - [] ----D C:\Program Files (x86)\Microsoft Security Client
O43 - CFD: 19/10/2014 - 20:45:01 - [] ----D C:\Program Files (x86)\Microsoft Silverlight
O43 - CFD: 03/08/2013 - 15:08:19 - [] ----D C:\Program Files (x86)\Microsoft SQL Server Compact Edition
O43 - CFD: 29/07/2014 - 06:13:55 - [] ----D C:\Program Files (x86)\Microsoft Studios
O43 - CFD: 03/08/2013 - 15:08:20 - [] ----D C:\Program Files (x86)\Microsoft Synchronization Services
O43 - CFD: 03/08/2013 - 15:07:11 - [] ----D C:\Program Files (x86)\Microsoft Visual Studio 10.0
O43 - CFD: 19/03/2010 - 12:25:23 - [] ----D C:\Program Files (x86)\Microsoft Works
O43 - CFD: 16/08/2010 - 02:15:52 - [] ----D C:\Program Files (x86)\Microsoft XNA
O43 - CFD: 06/07/2010 - 02:46:23 - [] ----D C:\Program Files (x86)\Microsoft.NET
O43 - CFD: 18/07/2013 - 13:33:05 - [] ----D C:\Program Files (x86)\Micy Roll
O43 - CFD: 13/07/2014 - 20:19:35 - [] ----D C:\Program Files (x86)\mIRC
O43 - CFD: 04/03/2012 - 19:08:06 - [] ----D C:\Program Files (x86)\mkv2vob
O43 - CFD: 06/09/2010 - 22:16:22 - [] ----D C:\Program Files (x86)\Monster Trucks Nitro
O43 - CFD: 12/09/2010 - 21:26:06 - [] ----D C:\Program Files (x86)\Monster.Truck.Challenge
O43 - CFD: 12/09/2010 - 19:40:46 - [0] ----D C:\Program Files (x86)\MonsterTruck
O43 - CFD: 15/04/2015 - 16:18:54 - [] ----D C:\Program Files (x86)\Mozilla Firefox
O43 - CFD: 20/12/2013 - 19:34:36 - [] ----D C:\Program Files (x86)\Mozilla Firefox(0)
O43 - CFD: 27/12/2013 - 19:15:50 - [] ----D C:\Program Files (x86)\Mozilla Firefox(1)
O43 - CFD: 15/04/2015 - 16:11:41 - [] ----D C:\Program Files (x86)\Mozilla Maintenance Service
O43 - CFD: 27/05/2012 - 21:11:55 - [] ----D C:\Program Files (x86)\MP3 Cut
O43 - CFD: 27/05/2012 - 21:12:04 - [] ----D C:\Program Files (x86)\MP3 Cut DB Toolbar Toolbar
O43 - CFD: 20/10/2012 - 12:11:04 - [] ----D C:\Program Files (x86)\mp3DirectCut
O43 - CFD: 07/01/2012 - 18:23:22 - [] ----D C:\Program Files (x86)\Mr QuestionMan
O43 - CFD: 03/08/2013 - 15:06:32 - [] ----D C:\Program Files (x86)\MSBuild
O43 - CFD: 11/07/2009 - 22:48:19 - [0] ----D C:\Program Files (x86)\MSXML 4.0
O43 - CFD: 12/09/2010 - 19:40:11 - [] ----D C:\Program Files (x86)\MTM2
O43 - CFD: 28/07/2012 - 20:56:12 - [] ----D C:\Program Files (x86)\Namco Bandai Games
O43 - CFD: 10/10/2014 - 18:08:27 - [] ----D C:\Program Files (x86)\NCH Software
O43 - CFD: 13/05/2012 - 11:43:56 - [] ----D C:\Program Files (x86)\ND Games
O43 - CFD: 06/02/2011 - 21:18:53 - [] ----D C:\Program Files (x86)\Nero
O43 - CFD: 11/01/2009 - 05:05:27 - [] ----D C:\Program Files (x86)\NewTech Infosystems
O43 - CFD: 19/08/2009 - 22:20:02 - [] ----D C:\Program Files (x86)\NFO viewer
O43 - CFD: 06/01/2013 - 01:30:19 - [0] ----D C:\Program Files (x86)\Nifflas
O43 - CFD: 25/04/2013 - 08:25:47 - [] ----D C:\Program Files (x86)\Nimbus
O43 - CFD: 01/11/2012 - 15:17:44 - [] ----D C:\Program Files (x86)\Nordic Games
O43 - CFD: 11/07/2009 - 10:39:51 - [] ----D C:\Program Files (x86)\Northstar
O43 - CFD: 16/07/2014 - 14:30:46 - [] ----D C:\Program Files (x86)\NVIDIA Corporation
O43 - CFD: 11/07/2009 - 23:48:24 - [] ----D C:\Program Files (x86)\NX Client for Windows
O43 - CFD: 01/11/2011 - 12:43:08 - [] ----D C:\Program Files (x86)\Oberon Media
O43 - CFD: 01/02/2014 - 21:55:24 - [0] ----D C:\Program Files (x86)\Octodad Dadliest Catch
O43 - CFD: 30/04/2012 - 22:48:29 - [0] ----D C:\Program Files (x86)\Offspring Fling
O43 - CFD: 02/11/2014 - 21:18:08 - [] ----D C:\Program Files (x86)\Online Games Manager
O43 - CFD: 25/05/2011 - 20:33:47 - [] ----D C:\Program Files (x86)\OpenAL
O43 - CFD: 24/01/2011 - 23:01:05 - [] ----D C:\Program Files (x86)\OpenOffice.org 3
O43 - CFD: 15/04/2015 - 09:38:25 - [] ----D C:\Program Files (x86)\Optimizer Pro 3.79 =>PUP.OptimizerPro
O43 - CFD: 08/01/2015 - 23:32:18 - [] ----D C:\Program Files (x86)\Orange
O43 - CFD: 05/09/2013 - 19:31:00 - [0] ----D C:\Program Files (x86)\Outlast
O43 - CFD: 14/08/2010 - 15:27:45 - [] ----D C:\Program Files (x86)\P2 Games
O43 - CFD: 19/04/2013 - 01:12:13 - [] ----D C:\Program Files (x86)\Papo & Yo
O43 - CFD: 06/05/2011 - 20:29:54 - [0] ----D C:\Program Files (x86)\Pathea Games
O43 - CFD: 05/02/2010 - 00:43:42 - [] ----D C:\Program Files (x86)\PC Connectivity Solution
O43 - CFD: 11/03/2013 - 19:39:36 - [] ----D C:\Program Files (x86)\Peggle Nights Deluxe
O43 - CFD: 29/12/2013 - 06:44:34 - [] ----D C:\Program Files (x86)\PhotoFiltre
O43 - CFD: 21/07/2012 - 23:47:10 - [0] ----D C:\Program Files (x86)\Play
O43 - CFD: 12/11/2009 - 22:08:39 - [] ----D C:\Program Files (x86)\Playbrains
O43 - CFD: 26/11/2011 - 09:00:11 - [0] ----D C:\Program Files (x86)\Playlogic
O43 - CFD: 02/11/2013 - 21:20:45 - [] ----D C:\Program Files (x86)\Plush
O43 - CFD: 08/01/2011 - 16:12:42 - [] ----D C:\Program Files (x86)\ProtectDisc Driver Installer
O43 - CFD: 20/03/2013 - 22:23:27 - [] ----D C:\Program Files (x86)\Push The Box
O43 - CFD: 12/07/2009 - 01:40:06 - [] ----D C:\Program Files (x86)\PuTTY
O43 - CFD: 29/11/2010 - 21:22:15 - [] ----D C:\Program Files (x86)\Racers' Islands - Crazy Arenas
O43 - CFD: 26/01/2012 - 20:59:44 - [] ----D C:\Program Files (x86)\Radiangames
O43 - CFD: 15/04/2015 - 11:04:47 - [] ----D C:\Program Files (x86)\RCP
O43 - CFD: 11/01/2009 - 04:36:04 - [] ----D C:\Program Files (x86)\Realtek
O43 - CFD: 11/09/2012 - 23:45:26 - [0] ----D C:\Program Files (x86)\Rebellion
O43 - CFD: 04/03/2013 - 10:08:12 - [0] ----D C:\Program Files (x86)\Recoil Games
O43 - CFD: 03/10/2012 - 22:38:18 - [] ----D C:\Program Files (x86)\Red Kawa
O43 - CFD: 09/06/2011 - 19:31:09 - [] ----D C:\Program Files (x86)\Red.Faction.Armageddon.STEAMCRACKED-P2P
O43 - CFD: 02/11/2006 - 17:07:27 - [] ----D C:\Program Files (x86)\Reference Assemblies
O43 - CFD: 15/04/2015 - 11:04:26 - [] ----D C:\Program Files (x86)\Registry Helper =>PUP.RegistryHelper
O43 - CFD: 14/01/2011 - 07:18:21 - [] ----D C:\Program Files (x86)\reslists
O43 - CFD: 30/10/2011 - 16:54:02 - [0] ----D C:\Program Files (x86)\RetroEpic
O43 - CFD: 20/10/2012 - 00:44:11 - [0] ----D C:\Program Files (x86)\Reverb Publishing
O43 - CFD: 02/02/2014 - 18:19:47 - [] ----D C:\Program Files (x86)\Rhythm Destruction
O43 - CFD: 27/08/2012 - 09:48:15 - [] ----D C:\Program Files (x86)\Ricochet Infinity
O43 - CFD: 17/01/2011 - 23:30:17 - [0] ----D C:\Program Files (x86)\Rockstar Games
O43 - CFD: 02/08/2012 - 06:01:52 - [0] ----D C:\Program Files (x86)\Ronimo Games
O43 - CFD: 19/11/2012 - 18:30:04 - [] ----D C:\Program Files (x86)\Rovio
O43 - CFD: 21/04/2011 - 20:59:25 - [] ----D C:\Program Files (x86)\SAGEM
O43 - CFD: 05/02/2010 - 00:16:29 - [] ----D C:\Program Files (x86)\Samsung
O43 - CFD: 29/12/2010 - 17:30:53 - [] ----D C:\Program Files (x86)\Samurize
O43 - CFD: 08/02/2013 - 20:26:09 - [] ----D C:\Program Files (x86)\Saving Private Sheep 2
O43 - CFD: 21/04/2011 - 20:58:35 - [] ----D C:\Program Files (x86)\Securitoo
O43 - CFD: 04/05/2012 - 17:53:15 - [] ----D C:\Program Files (x86)\SEGA
O43 - CFD: 15/04/2015 - 18:47:50 - [] ----D C:\Program Files (x86)\Serveur Media
O43 - CFD: 06/05/2012 - 19:49:38 - [] ----D C:\Program Files (x86)\Shrapnel Games
O43 - CFD: 05/03/2015 - 20:44:22 - [] R---D C:\Program Files (x86)\Skype
O43 - CFD: 19/07/2014 - 07:17:21 - [] ----D C:\Program Files (x86)\Slip
O43 - CFD: 07/11/2010 - 17:50:06 - [] ----D C:\Program Files (x86)\SmashMouth Games
O43 - CFD: 08/09/2013 - 15:21:13 - [] ----D C:\Program Files (x86)\Spectra
O43 - CFD: 08/08/2011 - 21:48:02 - [] ----D C:\Program Files (x86)\Spirits of Metropolis v1.10
O43 - CFD: 07/08/2011 - 01:59:49 - [] ----D C:\Program Files (x86)\Spybot - Search & Destroy
O43 - CFD: 11/09/2012 - 23:43:37 - [0] ----D C:\Program Files (x86)\SQUARE ENIX
O43 - CFD: 29/09/2010 - 12:31:37 - [] ----D C:\Program Files (x86)\SQUARE ENIX - Eidos Interactive
O43 - CFD: 11/09/2009 - 20:49:22 - [] ----D C:\Program Files (x86)\SR71GAMES
O43 - CFD: 03/08/2013 - 12:52:34 - [] ----D C:\Program Files (x86)\Steam
O43 - CFD: 16/12/2013 - 12:02:53 - [] ----D C:\Program Files (x86)\Stick It To The Man!
O43 - CFD: 15/04/2015 - 10:00:36 - [] ----D C:\Program Files (x86)\StormWatch =>PUP.StormWatch
O43 - CFD: 08/07/2012 - 18:37:51 - [0] ----D C:\Program Files (x86)\Strange Loop Games
O43 - CFD: 29/04/2012 - 14:59:25 - [] ----D C:\Program Files (x86)\Strategy First Inc
O43 - CFD: 09/12/2010 - 08:05:56 - [] ----D C:\Program Files (x86)\Super Meat Boy
O43 - CFD: 12/09/2013 - 19:35:48 - [] ----D C:\Program Files (x86)\Superfrog HD
O43 - CFD: 30/09/2011 - 18:11:02 - [] ----D C:\Program Files (x86)\Team17
O43 - CFD: 15/06/2010 - 23:45:12 - [0] ----D C:\Program Files (x86)\Techland
O43 - CFD: 01/08/2014 - 18:03:20 - [] ----D C:\Program Files (x86)\Teyon
O43 - CFD: 11/11/2010 - 00:58:06 - [] ----D C:\Program Files (x86)\The Ball
O43 - CFD: 29/09/2011 - 19:17:29 - [] ----D C:\Program Files (x86)\The Binding of Isaac
O43 - CFD: 27/08/2012 - 09:52:19 - [] ----D C:\Program Files (x86)\The Elder Scrolls V Skyrim
O43 - CFD: 01/06/2013 - 17:05:55 - [0] ----D C:\Program Files (x86)\The Swapper
O43 - CFD: 25/04/2013 - 08:25:47 - [] ----D C:\Program Files (x86)\The UnderGarden
O43 - CFD: 22/04/2011 - 20:01:59 - [] ----D C:\Program Files (x86)\Thoughtquake Studios
O43 - CFD: 11/09/2012 - 23:44:06 - [0] ----D C:\Program Files (x86)\THQ
O43 - CFD: 17/12/2013 - 21:46:09 - [0] ----D C:\Program Files (x86)\Tiny Utilities
O43 - CFD: 22/05/2011 - 21:49:11 - [] ----D C:\Program Files (x86)\Tomato
O43 - CFD: 19/07/2011 - 19:48:46 - [0] ----D C:\Program Files (x86)\TomTom DesktopSuite
O43 - CFD: 11/03/2013 - 19:37:38 - [] ----D C:\Program Files (x86)\TomTom HOME 2
O43 - CFD: 16/12/2011 - 23:25:42 - [0] ----D C:\Program Files (x86)\Toxic Games
O43 - CFD: 26/09/2010 - 12:22:20 - [] ----D C:\Program Files (x86)\Trend Micro
O43 - CFD: 09/04/2013 - 19:55:36 - [] ----D C:\Program Files (x86)\Ubisoft
O43 - CFD: 14/07/2009 - 08:47:31 - [] ----D C:\Program Files (x86)\UltraISO
O43 - CFD: 02/11/2006 - 17:36:07 - [0] --H-D C:\Program Files (x86)\Uninstall Information
O43 - CFD: 25/01/2012 - 19:27:44 - [] ----D C:\Program Files (x86)\URL2JPEG
O43 - CFD: 16/09/2014 - 23:36:55 - [] ----D C:\Program Files (x86)\uTorrent =>P2P.µTorrent
O43 - CFD: 20/04/2011 - 17:52:20 - [] ----D C:\Program Files (x86)\Valve
O43 - CFD: 07/02/2011 - 23:57:52 - [] ----D C:\Program Files (x86)\VDownloader
O43 - CFD: 15/04/2015 - 16:49:13 - [] ----D C:\Program Files (x86)\version36BlockAndSurf =>PUP.BlockAndSurf
O43 - CFD: 13/08/2013 - 18:12:41 - [] ----D C:\Program Files (x86)\VideoLAN
O43 - CFD: 07/11/2014 - 19:44:29 - [] ----D C:\Program Files (x86)\VirtualDJ
O43 - CFD: 27/12/2010 - 15:53:11 - [] ----D C:\Program Files (x86)\VTech
O43 - CFD: 15/04/2015 - 09:38:51 - [] ----D C:\Program Files (x86)\Wajam =>PUP.Wajam
O43 - CFD: 15/04/2015 - 09:39:02 - [] ----D C:\Program Files (x86)\WaNetworkEnhance =>PUP.Wajam
O43 - CFD: 14/03/2012 - 21:32:49 - [] ----D C:\Program Files (x86)\WARP
O43 - CFD: 28/10/2012 - 18:11:07 - [0] ----D C:\Program Files (x86)\WB Games
O43 - CFD: 28/08/2010 - 19:25:56 - [] ----D C:\Program Files (x86)\Windosill
O43 - CFD: 09/06/2011 - 23:02:07 - [] ----D C:\Program Files (x86)\Windows Calendar
O43 - CFD: 21/01/2008 - 05:09:47 - [] ----D C:\Program Files (x86)\Windows Collaboration
O43 - CFD: 21/01/2008 - 05:09:41 - [] ----D C:\Program Files (x86)\Windows Defender
O43 - CFD: 07/02/2011 - 15:12:04 - [] ----D C:\Program Files (x86)\Windows Live
O43 - CFD: 22/11/2009 - 21:48:05 - [] ----D C:\Program Files (x86)\Windows Live Safety Center
O43 - CFD: 11/01/2009 - 04:58:22 - [] ----D C:\Program Files (x86)\Windows Live SkyDrive
O43 - CFD: 22/04/2012 - 17:11:23 - [] ----D C:\Program Files (x86)\Windows Mail =>.Microsoft Corporation
O43 - CFD: 09/06/2011 - 23:02:07 - [] ----D C:\Program Files (x86)\Windows Media Player =>.Microsoft Corporation
O43 - CFD: 02/11/2006 - 17:07:27 - [] ----D C:\Program Files (x86)\Windows NT
O43 - CFD: 09/06/2011 - 23:02:07 - [] ----D C:\Program Files (x86)\Windows Photo Gallery
O43 - CFD: 11/06/2011 - 15:19:30 - [] ----D C:\Program Files (x86)\Windows Portable Devices
O43 - CFD: 09/06/2011 - 23:02:07 - [] ----D C:\Program Files (x86)\Windows Sidebar
O43 - CFD: 16/07/2009 - 00:34:09 - [] ----D C:\Program Files (x86)\WinSCP
O43 - CFD: 23/04/2012 - 10:25:48 - [] ----D C:\Program Files (x86)\Winstep
O43 - CFD: 15/04/2015 - 16:52:26 - [] ----D C:\Program Files (x86)\XTab
O43 - CFD: 15/04/2015 - 19:53:33 - [] ----D C:\Program Files (x86)\ZHPDiag =>.Nicolas Coolman
O43 - CFD: 02/11/2014 - 21:15:20 - [] ----D C:\Program Files (x86)\Zylom Games
O43 - CFD: 15/04/2015 - 16:40:33 - [] ----D C:\Program Files (x86)\Common Files\8708eaaa-1c2b-4faa-8923-a6c9f88eeb0e
O43 - CFD: 19/02/2012 - 22:25:45 - [] ----D C:\Program Files (x86)\Common Files\Adobe
O43 - CFD: 13/12/2014 - 20:22:51 - [] ----D C:\Program Files (x86)\Common Files\Adobe AIR
O43 - CFD: 12/01/2015 - 01:59:25 - [] ----D C:\Program Files (x86)\Common Files\ArcSoft
O43 - CFD: 01/09/2010 - 22:48:00 - [] ----D C:\Program Files (x86)\Common Files\BioWare
O43 - CFD: 21/02/2015 - 21:52:28 - [0] ----D C:\Program Files (x86)\Common Files\Blizzard Entertainment
O43 - CFD: 11/08/2010 - 18:53:30 - [] ----D C:\Program Files (x86)\Common Files\BOONTY Shared
O43 - CFD: 11/01/2009 - 04:43:36 - [] ----D C:\Program Files (x86)\Common Files\DESIGNER
O43 - CFD: 17/02/2011 - 22:32:57 - [] ----D C:\Program Files (x86)\Common Files\DVDVIDEOSOFT
O43 - CFD: 08/02/2012 - 00:32:50 - [] --H-D C:\Program Files (x86)\Common Files\EAInstaller
O43 - CFD: 14/07/2009 - 08:47:31 - [] ----D C:\Program Files (x86)\Common Files\EZB Systems
O43 - CFD: 14/07/2009 - 00:32:19 - [] ----D C:\Program Files (x86)\Common Files\France Telecom
O43 - CFD: 28/05/2011 - 14:35:02 - [] ----D C:\Program Files (x86)\Common Files\InstallShield
O43 - CFD: 15/10/2014 - 06:41:39 - [] ----D C:\Program Files (x86)\Common Files\Java
O43 - CFD: 23/07/2011 - 20:05:36 - [] ----D C:\Program Files (x86)\Common Files\LightScribe
O43 - CFD: 03/08/2013 - 15:06:32 - [0] ----D C:\Program Files (x86)\Common Files\Merge Modules
O43 - CFD: 03/08/2013 - 15:07:09 - [] ----D C:\Program Files (x86)\Common Files\microsoft shared
O43 - CFD: 06/02/2011 - 21:19:10 - [] ----D C:\Program Files (x86)\Common Files\Nero
O43 - CFD: 04/01/2011 - 19:22:14 - [] ----D C:\Program Files (x86)\Common Files\Oberon Media
O43 - CFD: 02/11/2006 - 15:33:53 - [] ----D C:\Program Files (x86)\Common Files\Services
O43 - CFD: 05/03/2015 - 20:44:22 - [] ----D C:\Program Files (x86)\Common Files\Skype
O43 - CFD: 02/11/2006 - 15:33:53 - [] ----D C:\Program Files (x86)\Common Files\SpeechEngines
O43 - CFD: 22/08/2012 - 18:07:44 - [] ----D C:\Program Files (x86)\Common Files\Steam
O43 - CFD: 12/11/2011 - 10:00:14 - [] ----D C:\Program Files (x86)\Common Files\System
O43 - CFD: 22/05/2011 - 21:49:12 - [] ----D C:\Program Files (x86)\Common Files\Tomato
O43 - CFD: 11/01/2009 - 04:57:29 - [] ----D C:\Program Files (x86)\Common Files\Windows Live
O43 - CFD: 01/02/2011 - 20:26:46 - [] -SH-D C:\Program Files (x86)\Common Files\WindowsLiveInstaller
O43 - CFD: 30/03/2012 - 10:30:16 - [] ----D C:\Program Files (x86)\Common Files\Wise Installation Wizard
O43 - CFD: 25/04/2013 - 21:41:29 - [] ----D C:\ProgramData\10tons
O43 - CFD: 20/08/2013 - 19:49:04 - [0] ----D C:\ProgramData\4shared Desktop
O43 - CFD: 15/04/2015 - 16:40:31 - [] ----D C:\ProgramData\8708eaaa-1c2b-4faa-8923-a6c9f88eeb0e
O43 - CFD: 11/01/2009 - 05:10:46 - [] ----D C:\ProgramData\Acer GameZone Console
O43 - CFD: 19/02/2012 - 22:25:45 - [] ----D C:\ProgramData\Adobe
O43 - CFD: 22/01/2011 - 14:33:21 - [] ----D C:\ProgramData\Alwil Software
O43 - CFD: 07/11/2014 - 19:44:43 - [] ----D C:\ProgramData\APN
O43 - CFD: 13/12/2014 - 20:23:07 - [] ----D C:\ProgramData\Apple
O43 - CFD: 02/11/2006 - 17:42:17 - [] -SH-D C:\ProgramData\Application Data
O43 - CFD: 12/07/2009 - 11:50:41 - [] ----D C:\ProgramData\Arcade Lab
O43 - CFD: 12/01/2015 - 01:50:41 - [] ----D C:\ProgramData\ArcSoft
O43 - CFD: 13/08/2010 - 02:51:11 - [0] ----D C:\ProgramData\ASign
O43 - CFD: 19/05/2012 - 19:05:42 - [] ----D C:\ProgramData\ATI
O43 - CFD: 09/11/2010 - 02:01:50 - [] ----D C:\ProgramData\AWEM
O43 - CFD: 26/01/2011 - 22:10:29 - [] ----D C:\ProgramData\Balls
O43 - CFD: 12/09/2012 - 21:39:31 - [] ----D C:\ProgramData\Battle.net
O43 - CFD: 12/09/2012 - 21:40:38 - [] ----D C:\ProgramData\Blizzard Entertainment
O43 - CFD: 11/08/2010 - 18:54:16 - [] ----D C:\ProgramData\BOONTY
O43 - CFD: 11/07/2009 - 10:25:07 - [] -SH-D C:\ProgramData\Bureau
O43 - CFD: 18/10/2009 - 12:02:48 - [] ----D C:\ProgramData\Cabela's Outdoor Adventures Saves
O43 - CFD: 12/02/2015 - 21:10:42 - [0] ----D C:\ProgramData\Canon IJ Network Tool
O43 - CFD: 12/02/2015 - 21:09:39 - [] --H-D C:\ProgramData\CanonBJ
O43 - CFD: 12/02/2015 - 21:03:28 - [] --H-D C:\ProgramData\CanonIJETV
O43 - CFD: 12/02/2015 - 21:54:17 - [] --H-D C:\ProgramData\CanonIJMIG
O43 - CFD: 13/04/2015 - 17:44:21 - [] ----D C:\ProgramData\CanonIJPLM
O43 - CFD: 12/02/2015 - 21:42:44 - [] --H-D C:\ProgramData\CanonIJQuickMenu
O43 - CFD: 12/02/2015 - 21:42:08 - [] ----D C:\ProgramData\CanonIJWSpt
O43 - CFD: 25/05/2012 - 22:10:19 - [] ----D C:\ProgramData\Codemasters
O43 - CFD: 01/02/2014 - 21:43:11 - [] ----D C:\ProgramData\CODEX
O43 - CFD: 02/11/2014 - 21:18:08 - [] ----D C:\ProgramData\com.gamehouse.acid
O43 - CFD: 11/01/2009 - 05:03:45 - [] ----D C:\ProgramData\CyberLink
O43 - CFD: 03/08/2013 - 08:49:45 - [] ----D C:\ProgramData\DAEMON Tools Lite =>.DT Soft Ltd
O43 - CFD: 03/12/2011 - 10:51:50 - [] ----D C:\ProgramData\DAEMON Tools Pro
O43 - CFD: 02/11/2006 - 17:42:17 - [] -SH-D C:\ProgramData\Desktop
O43 - CFD: 27/12/2010 - 18:58:03 - [] ----D C:\ProgramData\dingogames
O43 - CFD: 02/11/2006 - 17:42:17 - [] -SH-D C:\ProgramData\Documents
O43 - CFD: 17/10/2010 - 15:16:55 - [] -SH-D C:\ProgramData\DSS
O43 - CFD: 01/02/2015 - 21:49:31 - [] ----D C:\ProgramData\DVD Shrink
O43 - CFD: 20/11/2010 - 19:51:19 - [] ----D C:\ProgramData\EA Core
O43 - CFD: 14/03/2012 - 17:10:58 - [] ----D C:\ProgramData\EA Logs
O43 - CFD: 20/11/2010 - 19:51:19 - [] ----D C:\ProgramData\Electronic Arts
O43 - CFD: 23/07/2009 - 18:55:56 - [] ----D C:\ProgramData\eMule
O43 - CFD: 05/10/2011 - 22:08:19 - [] ----D C:\ProgramData\EPSON
O43 - CFD: 24/07/2009 - 23:31:35 - [0] ----D C:\ProgramData\EPtemp
O43 - CFD: 11/01/2009 - 05:23:17 - [] ----D C:\ProgramData\eSobi
O43 - CFD: 11/07/2009 - 10:25:07 - [] -SH-D C:\ProgramData\Favoris
O43 - CFD: 02/11/2006 - 17:42:17 - [] -SH-D C:\ProgramData\Favorites
O43 - CFD: 05/04/2011 - 22:30:26 - [] ----D C:\ProgramData\FlashFXP
O43 - CFD: 15/08/2009 - 15:03:40 - [] ----D C:\ProgramData\GlobalSCAPE
O43 - CFD: 20/08/2011 - 14:45:29 - [] ----D C:\ProgramData\Google
O43 - CFD: 07/09/2011 - 18:55:35 - [0] ----D C:\ProgramData\Guitar Pro 6
O43 - CFD: 01/04/2014 - 17:35:11 - [] ----D C:\ProgramData\HP
O43 - CFD: 19/05/2012 - 12:28:59 - [] ----D C:\ProgramData\HP Photo Creations
O43 - CFD: 15/04/2015 - 10:02:16 - [] ----D C:\ProgramData\IHProtectUpDate =>Adware.AgentODR
O43 - CFD: 14/07/2012 - 15:38:55 - [] ----D C:\ProgramData\InstallShield
O43 - CFD: 15/09/2012 - 08:00:25 - [] ----D C:\ProgramData\JAGUAR
O43 - CFD: 15/09/2010 - 16:07:07 - [] ----D C:\ProgramData\Lavasoft
O43 - CFD: 04/02/2013 - 09:03:37 - [] ----D C:\ProgramData\Lightmare Studio
O43 - CFD: 16/08/2010 - 02:18:30 - [] ----D C:\ProgramData\LucasArts
O43 - CFD: 08/11/2014 - 19:24:55 - [] ----D C:\ProgramData\Malwarebytes
O43 - CFD: 11/07/2009 - 21:51:12 - [] ----D C:\ProgramData\McAfee
O43 - CFD: 28/10/2009 - 22:51:40 - [] ----D C:\ProgramData\McAfee Security Scan
O43 - CFD: 29/06/2011 - 18:44:21 - [0] ----D C:\ProgramData\Media Center Programs
O43 - CFD: 11/07/2009 - 10:25:07 - [] -SH-D C:\ProgramData\Menu Démarrer
O43 - CFD: 12/07/2009 - 23:04:57 - [] ----D C:\ProgramData\Meridian93
O43 - CFD: 29/12/2013 - 17:13:42 - [] ----D C:\ProgramData\Microsoft
O43 - CFD: 25/05/2013 - 13:20:02 - [] ----D C:\ProgramData\Microsoft Help
O43 - CFD: 11/07/2009 - 10:25:07 - [] -SH-D C:\ProgramData\Modèles
O43 - CFD: 25/04/2012 - 17:19:28 - [] ----D C:\ProgramData\Mozilla
O43 - CFD: 26/08/2011 - 18:32:24 - [] ----D C:\ProgramData\MumboJumbo
O43 - CFD: 11/03/2013 - 19:41:51 - [] ----D C:\ProgramData\Native Instruments
O43 - CFD: 10/10/2014 - 18:08:27 - [] ----D C:\ProgramData\NCH Software
O43 - CFD: 06/02/2011 - 21:15:01 - [] ----D C:\ProgramData\Nero
O43 - CFD: 23/12/2012 - 20:50:16 - [] ----D C:\ProgramData\Nifflas
O43 - CFD: 16/07/2014 - 14:28:53 - [] ----D C:\ProgramData\NVIDIA
O43 - CFD: 14/07/2014 - 19:11:56 - [] ----D C:\ProgramData\NVIDIA Corporation
O43 - CFD: 15/10/2014 - 06:41:57 - [0] ----D C:\ProgramData\Oracle
O43 - CFD: 08/01/2015 - 23:32:16 - [] ----D C:\ProgramData\Orange
O43 - CFD: 09/04/2013 - 19:44:47 - [] ----D C:\ProgramData\Orbit
O43 - CFD: 25/10/2012 - 06:00:04 - [] ----D C:\ProgramData\Origin
O43 - CFD: 01/08/2010 - 14:58:37 - [] ----D C:\ProgramData\Orion
O43 - CFD: 03/07/2012 - 23:12:11 - [] ----D C:\ProgramData\OUTLAWS
O43 - CFD: 11/03/2015 - 22:47:38 - [] ----D C:\ProgramData\Package Cache
O43 - CFD: 05/02/2010 - 00:21:24 - [] ----D C:\ProgramData\PC Suite
O43 - CFD: 01/11/2011 - 11:34:59 - [] ----D C:\ProgramData\PICTUREKA LA CHASSE AUX IMAGES
O43 - CFD: 08/05/2012 - 20:20:14 - [] ----D C:\ProgramData\PMS
O43 - CFD: 11/03/2013 - 19:39:47 - [] ----D C:\ProgramData\PopCap Games
O43 - CFD: 02/11/2014 - 21:19:42 - [] ----D C:\ProgramData\Real
O43 - CFD: 13/11/2011 - 18:00:16 - [] ----D C:\ProgramData\regid.1986-12.com.adobe
O43 - CFD: 15/04/2015 - 16:41:27 - [] ----D C:\ProgramData\Registry Helper =>PUP.RegistryHelper
O43 - CFD: 23/10/2011 - 10:44:37 - [] ----D C:\ProgramData\RELOADED
O43 - CFD: 04/08/2012 - 00:05:15 - [] ----D C:\ProgramData\Remedy
O43 - CFD: 15/04/2015 - 18:48:01 - [] ----D C:\ProgramData\Serveur Média
O43 - CFD: 17/02/2011 - 22:35:36 - [] ----D C:\ProgramData\SiComponents
O43 - CFD: 11/01/2009 - 04:55:46 - [] ----D C:\ProgramData\SiteAdvisor
O43 - CFD: 05/03/2015 - 20:44:20 - [] ----D C:\ProgramData\Skype
O43 - CFD: 02/04/2011 - 08:15:34 - [] ----D C:\ProgramData\Solidshield
O43 - CFD: 12/07/2009 - 23:06:07 - [] ----D C:\ProgramData\SpinTop Games
O43 - CFD: 13/09/2011 - 00:22:28 - [] ----D C:\ProgramData\Spybot - Search & Destroy
O43 - CFD: 02/11/2006 - 17:42:17 - [] -SH-D C:\ProgramData\Start Menu
O43 - CFD: 27/02/2013 - 00:41:15 - [] ----D C:\ProgramData\Steam
O43 - CFD: 02/05/2010 - 17:08:45 - [] ----D C:\ProgramData\Sun
O43 - CFD: 20/12/2010 - 23:07:18 - [0] ----D C:\ProgramData\Synetic
O43 - CFD: 15/04/2015 - 11:05:22 - [] ----D C:\ProgramData\Systweak
O43 - CFD: 20/03/2015 - 08:48:55 - [0] ---AD C:\ProgramData\TEMP
O43 - CFD: 02/11/2006 - 17:42:17 - [] -SH-D C:\ProgramData\Templates
O43 - CFD: 19/07/2011 - 19:49:40 - [] ----D C:\ProgramData\TomTom
O43 - CFD: 02/11/2014 - 21:18:07 - [] ----D C:\ProgramData\Trymedia =>Adware.Trymedia
O43 - CFD: 20/12/2010 - 22:16:12 - [] ----D C:\ProgramData\Ubisoft
O43 - CFD: 12/09/2009 - 20:38:57 - [] ----D C:\ProgramData\UDL
O43 - CFD: 06/10/2011 - 00:15:58 - [] ----D C:\ProgramData\Visan
O43 - CFD: 05/03/2015 - 20:56:19 - [] ----D C:\ProgramData\VS
O43 - CFD: 27/12/2010 - 15:51:33 - [] ----D C:\ProgramData\VTech
O43 - CFD: 15/04/2015 - 10:01:58 - [] ----D C:\ProgramData\WindowsMangerProtect =>PUP.Fuyu
O43 - CFD: 01/02/2011 - 20:23:35 - [] ----D C:\ProgramData\WLInstaller
O43 - CFD: 16/05/2013 - 22:05:08 - [] ----D C:\ProgramData\XLive
O43 - CFD: 02/11/2014 - 21:15:09 - [] ----D C:\ProgramData\Zylom
O43 - CFD: 20/09/2009 - 10:01:55 - [0] ----D C:\ProgramData\{2BAE6915-8510-4B9F-B498-02DA86258AA0}
O43 - CFD: 15/04/2015 - 16:41:37 - [] ----D C:\ProgramData\{48867fc6-0299-1a47-4886-67fc6029ff18}
O43 - CFD: 20/03/2013 - 22:23:27 - [] --H-D C:\ProgramData\~1
O43 - CFD: 20/03/2013 - 22:23:27 - [] --H-D C:\ProgramData\~2
O43 - CFD: 20/03/2013 - 22:23:27 - [] --H-D C:\ProgramData\~3
O43 - CFD: 20/03/2013 - 22:23:27 - [] --H-D C:\ProgramData\~4
O43 - CFD: 20/03/2013 - 22:23:27 - [] --H-D C:\ProgramData\~5
O43 - CFD: 20/03/2013 - 22:23:27 - [] --H-D C:\ProgramData\~6
O43 - CFD: 25/10/2013 - 18:18:16 - [] ----D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\(Default)
O43 - CFD: 16/01/2011 - 12:18:58 - [] ----D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\7-Zip
O43 - CFD: 30/10/2011 - 15:58:31 - [] ----D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\A Day in the Woods
O43 - CFD: 09/04/2011 - 20:17:43 - [] R---D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Accessories
O43 - CFD: 11/01/2009 - 04:37:57 - [] ----D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Acer
O43 - CFD: 11/01/2009 - 04:37:28 - [] ----D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Acer Arcade Live
O43 - CFD: 11/01/2009 - 05:28:34 - [] ----D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Acer GameZone
O43 - CFD: 11/01/2009 - 05:28:55 - [] ---AD C:\ProgramData\Microsoft\Windows\Start Menu\Programs\AcerSystem
O43 - CFD: 09/04/2011 - 20:17:43 - [] R---D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Administrative Tools
O43 - CFD: 13/11/2011 - 17:49:52 - [] ----D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Adobe
O43 - CFD: 15/04/2015 - 11:05:24 - [] ----D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Advanced~System Protector
O43 - CFD: 28/09/2010 - 15:49:33 - [] ----D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\aMSN
O43 - CFD: 21/02/2015 - 21:46:22 - [] ----D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Battle.net
O43 - CFD: 15/11/2012 - 06:43:59 - [] ----D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Blue Ripple Sound
O43 - CFD: 11/08/2010 - 20:42:04 - [] ----D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\BoontyGames
O43 - CFD: 01/11/2010 - 21:18:15 - [] ----D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Call of Duty Modern Warfare 2
O43 - CFD: 12/02/2015 - 21:42:11 - [] ----D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Canon Utilities
O43 - CFD: 22/06/2012 - 22:22:03 - [] ----D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Catalyst Control Center
O43 - CFD: 08/11/2014 - 19:17:01 - [] ----D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\CCleaner
O43 - CFD: 27/09/2010 - 11:39:01 - [0] ----D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\City Interactive
O43 - CFD: 24/08/2010 - 23:18:12 - [] ----D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Codemasters
O43 - CFD: 03/08/2013 - 08:31:41 - [] ----D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\DAEMON Tools Lite =>.DT Soft Ltd
O43 - CFD: 07/01/2012 - 18:46:58 - [] ----D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\dBpoweramp Music Converter
O43 - CFD: 23/04/2012 - 09:06:50 - [] ----D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Driver Cleaner Pro
O43 - CFD: 01/07/2013 - 17:33:27 - [] ----D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\DVDVIDEOSOFT
O43 - CFD: 23/07/2009 - 18:55:27 - [] ----D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\eMule
O43 - CFD: 12/02/2015 - 21:09:46 - [] ----D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Enregistrement utilisateur de Canon MG5600 series =>.Canon Inc
O43 - CFD: 11/01/2009 - 05:23:12 - [] R---D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\eSobi v2
O43 - CFD: 21/01/2008 - 05:20:45 - [] R---D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Extras and Upgrades
O43 - CFD: 15/04/2015 - 09:16:17 - [] ----D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\FreeGamePick
O43 - CFD: 01/11/2011 - 08:59:44 - [] ----D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\FTPRush
O43 - CFD: 12/09/2013 - 19:35:47 - [] R---D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Games
O43 - CFD: 15/04/2015 - 16:42:35 - [] ----D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\GAMESDESKTOP =>Adware.GamesDesktop
O43 - CFD: 23/10/2012 - 18:04:59 - [] ----D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Giana Sisters - Twisted Dreams
O43 - CFD: 11/03/2015 - 22:44:45 - [] ----D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\GOG.com
O43 - CFD: 20/03/2013 - 22:23:27 - [] ----D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Google Chrome
O43 - CFD: 09/10/2014 - 12:02:52 - [] ----D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Google Earth =>.Google Inc
O43 - CFD: 21/02/2015 - 21:52:19 - [] ----D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Hearthstone
O43 - CFD: 05/10/2011 - 21:19:21 - [] ----D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\HP
O43 - CFD: 21/04/2011 - 21:04:56 - [] ----D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\HSS Orange
O43 - CFD: 18/07/2009 - 11:56:28 - [] ----D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Image 2 ASCII Art
O43 - CFD: 16/08/2010 - 17:10:05 - [] ----D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\IQ Publishing
O43 - CFD: 01/02/2014 - 21:38:49 - [] ----D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Java
O43 - CFD: 13/08/2013 - 18:12:13 - [] ----D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\K-Lite Codec Pack
O43 - CFD: 05/09/2009 - 23:49:04 - [] ----D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\LightScribe Direct Disc Labeling
O43 - CFD: 21/04/2011 - 20:59:25 - [] ----D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Livebox
O43 - CFD: 17/10/2009 - 17:48:34 - [] ----D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Machinarium
O43 - CFD: 02/11/2006 - 17:36:19 - [] R---D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Maintenance
O43 - CFD: 07/05/2011 - 18:54:18 - [] ----D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Games for Windows Marketplace
O43 - CFD: 11/01/2009 - 04:45:25 - [] R---D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Office
O43 - CFD: 06/07/2010 - 02:43:30 - [] ----D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Office Live Add-in
O43 - CFD: 12/10/2014 - 10:36:56 - [] ----D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Silverlight
O43 - CFD: 29/07/2014 - 06:18:16 - [] ----D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Studios
O43 - CFD: 11/03/2015 - 22:45:27 - [] ----D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Visual Studio 2010 Express
O43 - CFD: 17/12/2009 - 07:53:44 - [] ----D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Works
O43 - CFD: 07/01/2012 - 18:21:26 - [] ----D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Mr QuestionMan
O43 - CFD: 06/02/2011 - 21:18:56 - [] ----D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Nero
O43 - CFD: 11/01/2009 - 05:05:34 - [] ----D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\NTI Backup Now 5
O43 - CFD: 11/01/2009 - 05:05:11 - [] ----D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\NTI Media Maker 8
O43 - CFD: 14/07/2014 - 19:11:34 - [] ----D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\NVIDIA Corporation
O43 - CFD: 11/07/2009 - 23:48:24 - [] ----D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\NX Client for Windows
O43 - CFD: 04/01/2011 - 19:22:13 - [] ----D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Oberon Media
O43 - CFD: 24/01/2011 - 23:03:18 - [] -S--D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\OpenOffice.org 3.2
O43 - CFD: 15/04/2015 - 09:38:25 - [] ----D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Optimizer Pro v3.2 =>PUP.OptimizerPro
O43 - CFD: 25/02/2015 - 19:49:35 - [] ----D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Orange
O43 - CFD: 12/07/2009 - 00:41:08 - [] ----D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\PhotoFiltre
O43 - CFD: 20/11/2010 - 22:22:41 - [] ----D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Playlogic
O43 - CFD: 01/11/2011 - 11:34:18 - [] ----D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Pogo
O43 - CFD: 10/10/2014 - 18:08:02 - [] ----D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Programmes audio
O43 - CFD: 11/06/2011 - 11:35:31 - [] ----D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Razor 1911
O43 - CFD: 03/10/2012 - 22:38:18 - [] ----D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Red Kawa
O43 - CFD: 15/04/2015 - 11:04:47 - [] ----D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\RegClean Pro =>Rogue.RegistryPowerCleaner
O43 - CFD: 15/04/2015 - 11:04:26 - [] ----D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Registry Helper =>PUP.RegistryHelper
O43 - CFD: 24/08/2010 - 01:02:05 - [] ----D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Ricochet Infinity
O43 - CFD: 19/11/2012 - 18:55:07 - [] ----D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Rovio
O43 - CFD: 05/02/2010 - 00:44:14 - [] ----D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Samsung New PC Studio
O43 - CFD: 04/05/2012 - 18:30:35 - [] ----D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\SEGA
O43 - CFD: 06/09/2010 - 18:12:10 - [] ----D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Serious Sam 2
O43 - CFD: 03/03/2012 - 20:51:09 - [] ----D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Serveur Média
O43 - CFD: 16/08/2010 - 21:57:44 - [] ----D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Singularity(TM)
O43 - CFD: 05/03/2015 - 20:44:22 - [] ----D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Skype
O43 - CFD: 11/07/2009 - 10:39:37 - [] ----D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\SmartCopy
O43 - CFD: 11/07/2009 - 10:39:51 - [] ----D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\SmartLauncher
O43 - CFD: 07/11/2010 - 17:51:57 - [] ----D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\SmashMouthGames
O43 - CFD: 13/09/2010 - 19:42:38 - [] ----D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Spybot - Search & Destroy
O43 - CFD: 23/08/2013 - 13:40:50 - [] R---D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup
O43 - CFD: 22/08/2012 - 18:07:45 - [] ----D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Steam
O43 - CFD: 11/09/2009 - 20:49:48 - [] ----D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Steel Saviour
O43 - CFD: 15/04/2015 - 10:00:24 - [] ----D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\StormWatch =>PUP.StormWatch
O43 - CFD: 10/10/2014 - 18:08:02 - [] ----D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Suite NCH Software
O43 - CFD: 14/01/2014 - 19:17:23 - [] ----D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\SUPER © - by eRightSoft
O43 - CFD: 02/11/2006 - 17:07:25 - [] R-H-D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Tablet PC
O43 - CFD: 22/04/2011 - 20:03:01 - [] ----D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Tesla The Weather Man
O43 - CFD: 07/09/2013 - 13:47:51 - [] ----D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Tiny Utilities
O43 - CFD: 02/08/2010 - 15:11:40 - [] ----D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\TundraDraw
O43 - CFD: 09/02/2013 - 20:23:07 - [] ----D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Turtle Beach
O43 - CFD: 14/07/2009 - 08:47:32 - [] ----D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\UltraISO
O43 - CFD: 13/08/2013 - 18:19:13 - [] ----D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\VideoLAN
O43 - CFD: 27/12/2010 - 15:53:21 - [] ----D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\VTech
O43 - CFD: 15/04/2015 - 09:39:02 - [] ----D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\WaNetworkEnhance
O43 - CFD: 07/02/2011 - 15:12:05 - [] ----D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Windows Live
O43 - CFD: 14/07/2009 - 08:55:50 - [] ----D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\WinRAR
O43 - CFD: 16/07/2009 - 00:34:09 - [] ----D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\WinSCP
O43 - CFD: 22/11/2011 - 22:55:13 - [] ----D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Winstep
O43 - CFD: 15/04/2015 - 19:53:33 - [] ----D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\ZHP =>.Nicolas Coolman
O43 - CFD: 12/07/2009 - 11:41:54 - [0] -SH-D C:\Users\betto\AppData\Roaming\.#
O43 - CFD: 11/02/2013 - 12:06:51 - [] ----D C:\Users\betto\AppData\Roaming\.dvdcss
O43 - CFD: 15/04/2015 - 09:35:30 - [] ----D C:\Users\betto\AppData\Roaming\.minecraft
O43 - CFD: 25/04/2013 - 21:41:29 - [] ----D C:\Users\betto\AppData\Roaming\10tons
O43 - CFD: 16/08/2010 - 02:01:34 - [] ----D C:\Users\betto\AppData\Roaming\2XL
O43 - CFD: 13/01/2012 - 19:38:12 - [] ----D C:\Users\betto\AppData\Roaming\AccurateRip
O43 - CFD: 11/01/2009 - 05:10:46 - [] ----D C:\Users\betto\AppData\Roaming\Acer GameZone Console
O43 - CFD: 02/08/2012 - 00:29:35 - [] ----D C:\Users\betto\AppData\Roaming\Adobe
O43 - CFD: 01/02/2012 - 21:54:55 - [] ----D C:\Users\betto\AppData\Roaming\Adobe Mini Bridge CS5
O43 - CFD: 12/09/2012 - 20:32:24 - [] ----D C:\Users\betto\AppData\Roaming\AlawarEntertainment
O43 - CFD: 26/08/2010 - 00:42:24 - [] ----D C:\Users\betto\AppData\Roaming\AlderGames
O43 - CFD: 15/04/2015 - 10:56:16 - [] -SH-D C:\Users\betto\AppData\Roaming\AnyProtectEx =>PUP.AnyProtect
O43 - CFD: 12/01/2015 - 01:50:39 - [] ----D C:\Users\betto\AppData\Roaming\ArcSoft
O43 - CFD: 23/04/2012 - 10:22:58 - [] ----D C:\Users\betto\AppData\Roaming\ATI
O43 - CFD: 27/05/2012 - 21:26:28 - [] ----D C:\Users\betto\AppData\Roaming\Audacity
O43 - CFD: 11/07/2013 - 08:25:44 - [] ----D C:\Users\betto\AppData\Roaming\AutoTivity
O43 - CFD: 25/08/2011 - 21:24:18 - [] ----D C:\Users\betto\AppData\Roaming\avidemux
O43 - CFD: 14/04/2013 - 07:58:42 - [] ----D C:\Users\betto\AppData\Roaming\AX gamesoft
O43 - CFD: 21/02/2015 - 21:51:21 - [] ----D C:\Users\betto\AppData\Roaming\Battle.net
O43 - CFD: 23/03/2010 - 21:12:34 - [] ----D C:\Users\betto\AppData\Roaming\Bioshock2
O43 - CFD: 22/08/2009 - 10:56:22 - [] ----D C:\Users\betto\AppData\Roaming\BlackBean
O43 - CFD: 12/08/2010 - 02:38:22 - [] ----D C:\Users\betto\AppData\Roaming\Braid
O43 - CFD: 19/03/2012 - 20:00:27 - [0] ----D C:\Users\betto\AppData\Roaming\Broad Intelligence
O43 - CFD: 11/02/2013 - 11:58:22 - [] ----D C:\Users\betto\AppData\Roaming\Brorsoft
O43 - CFD: 25/02/2015 - 19:50:09 - [] ----D C:\Users\betto\AppData\Roaming\Canon
O43 - CFD: 21/08/2009 - 23:10:40 - [] ----D C:\Users\betto\AppData\Roaming\Capcom
O43 - CFD: 20/04/2013 - 10:21:32 - [] ----D C:\Users\betto\AppData\Roaming\chc.4875E02D9FB21EE389F73B8D1702B320485DF8CE.1
O43 - CFD: 02/10/2010 - 16:56:53 - [] ----D C:\Users\betto\AppData\Roaming\Chime
O43 - CFD: 29/06/2011 - 18:42:51 - [] ----D C:\Users\betto\AppData\Roaming\CityBus
O43 - CFD: 04/01/2011 - 19:23:26 - [] ----D C:\Users\betto\AppData\Roaming\Clickteam
O43 - CFD: 13/09/2011 - 22:22:22 - [] ----D C:\Users\betto\AppData\Roaming\Clockwork Pixels
O43 - CFD: 29/11/2010 - 20:45:42 - [] ----D C:\Users\betto\AppData\Roaming\Clones
O43 - CFD: 25/11/2012 - 20:42:04 - [] ----D C:\Users\betto\AppData\Roaming\com.northwayGames.Incredipede
O43 - CFD: 13/08/2013 - 17:51:01 - [] ----D C:\Users\betto\AppData\Roaming\DAEMON Tools Lite =>.DT Soft Ltd
O43 - CFD: 03/12/2011 - 11:01:17 - [] ----D C:\Users\betto\AppData\Roaming\DAEMON Tools Pro
O43 - CFD: 18/02/2012 - 16:00:55 - [] ----D C:\Users\betto\AppData\Roaming\DarknessII
O43 - CFD: 23/06/2011 - 08:50:23 - [] ----D C:\Users\betto\AppData\Roaming\Day 1 Studios
O43 - CFD: 12/01/2012 - 22:05:10 - [] ----D C:\Users\betto\AppData\Roaming\dBpoweramp
O43 - CFD: 27/12/2010 - 18:58:03 - [] ----D C:\Users\betto\AppData\Roaming\dingogames
O43 - CFD: 15/05/2011 - 12:11:06 - [0] ----D C:\Users\betto\AppData\Roaming\DisneyInteractiveStudios
O43 - CFD: 19/11/2010 - 01:23:46 - [] ----D C:\Users\betto\AppData\Roaming\DocClockGame
O43 - CFD: 27/02/2013 - 00:41:20 - [] ----D C:\Users\betto\AppData\Roaming\Doublefine
O43 - CFD: 01/02/2015 - 20:06:59 - [] ----D C:\Users\betto\AppData\Roaming\dvdcss
O43 - CFD: 19/05/2012 - 13:57:59 - [] ----D C:\Users\betto\AppData\Roaming\Dynamite Jack
O43 - CFD: 02/01/2012 - 12:15:17 - [] ----D C:\Users\betto\AppData\Roaming\EAC
O43 - CFD: 30/09/2010 - 19:31:45 - [] ----D C:\Users\betto\AppData\Roaming\EPSON
O43 - CFD: 29/12/2010 - 17:25:14 - [] ----D C:\Users\betto\AppData\Roaming\ExportTool
O43 - CFD: 14/08/2010 - 16:21:50 - [0] ----D C:\Users\betto\AppData\Roaming\FairyTale
O43 - CFD: 01/05/2013 - 20:52:11 - [] ----D C:\Users\betto\AppData\Roaming\FEZ
O43 - CFD: 19/07/2012 - 07:26:39 - [] ----D C:\Users\betto\AppData\Roaming\FileZilla
O43 - CFD: 14/07/2009 - 11:31:33 - [] ----D C:\Users\betto\AppData\Roaming\FlashFXP
O43 - CFD: 29/07/2012 - 00:15:29 - [] ----D C:\Users\betto\AppData\Roaming\FTPRush
O43 - CFD: 03/12/2011 - 10:41:32 - [] ----D C:\Users\betto\AppData\Roaming\GetRightToGo
O43 - CFD: 12/07/2009 - 23:01:05 - [] ----D C:\Users\betto\AppData\Roaming\Go Go Gourmet
O43 - CFD: 11/07/2009 - 20:56:42 - [] ----D C:\Users\betto\AppData\Roaming\Google
O43 - CFD: 07/09/2011 - 21:25:27 - [] ----D C:\Users\betto\AppData\Roaming\Guitar Pro 6
O43 - CFD: 05/12/2010 - 14:11:45 - [] ----D C:\Users\betto\AppData\Roaming\Hive Cluster
O43 - CFD: 14/12/2011 - 21:24:24 - [] ----D C:\Users\betto\AppData\Roaming\HomeSheepHome2
O43 - CFD: 01/09/2011 - 21:36:29 - [] ----D C:\Users\betto\AppData\Roaming\Hothead Games
O43 - CFD: 12/10/2011 - 21:24:16 - [] ----D C:\Users\betto\AppData\Roaming\HpUpdate
O43 - CFD: 23/09/2010 - 22:56:02 - [] ----D C:\Users\betto\AppData\Roaming\Identities
O43 - CFD: 11/07/2009 - 10:39:00 - [] ----D C:\Users\betto\AppData\Roaming\InstallShield
O43 - CFD: 06/06/2010 - 18:09:58 - [] ----D C:\Users\betto\AppData\Roaming\InstallShield Installation Information
O43 - CFD: 06/07/2013 - 20:42:35 - [] ----D C:\Users\betto\AppData\Roaming\Kalypso Media
O43 - CFD: 22/09/2010 - 14:38:29 - [] ----D C:\Users\betto\AppData\Roaming\Leadertech
O43 - CFD: 02/11/2013 - 17:55:07 - [] ----D C:\Users\betto\AppData\Roaming\LoneSurvivor
O43 - CFD: 02/10/2011 - 20:53:15 - [] ----D C:\Users\betto\AppData\Roaming\Macromedia
O43 - CFD: 11/11/2010 - 02:10:32 - [] ----D C:\Users\betto\AppData\Roaming\Magnet's Story
O43 - CFD: 08/11/2014 - 19:25:04 - [0] ----D C:\Users\betto\AppData\Roaming\Malwarebytes
O43 - CFD: 02/08/2010 - 15:30:09 - [] ----D C:\Users\betto\AppData\Roaming\Mazaika
O43 - CFD: 02/11/2006 - 17:07:25 - [0] ----D C:\Users\betto\AppData\Roaming\Media Center Programs
O43 - CFD: 12/07/2009 - 23:04:47 - [] ----D C:\Users\betto\AppData\Roaming\Meridian93
O43 - CFD: 25/11/2014 - 21:10:32 - [] -S--D C:\Users\betto\AppData\Roaming\Microsoft
O43 - CFD: 15/04/2015 - 19:56:58 - [] ----D C:\Users\betto\AppData\Roaming\mIRC
O43 - CFD: 02/11/2013 - 23:36:14 - [0] ----D C:\Users\betto\AppData\Roaming\MMFApplications
O43 - CFD: 11/07/2009 - 21:13:41 - [] ----D C:\Users\betto\AppData\Roaming\Mozilla
O43 - CFD: 27/05/2012 - 21:12:19 - [] ----D C:\Users\betto\AppData\Roaming\MP3 Cut
O43 - CFD: 10/10/2014 - 18:08:12 - [] ----D C:\Users\betto\AppData\Roaming\NCH Software
O43 - CFD: 27/02/2011 - 22:23:36 - [] ----D C:\Users\betto\AppData\Roaming\Nero
O43 - CFD: 11/01/2011 - 22:43:47 - [] ----D C:\Users\betto\AppData\Roaming\Nicalis
O43 - CFD: 06/01/2013 - 01:19:56 - [] ----D C:\Users\betto\AppData\Roaming\Nifflas
O43 - CFD: 02/10/2011 - 17:54:31 - [] ----D C:\Users\betto\AppData\Roaming\No Company Name
O43 - CFD: 27/07/2014 - 18:50:28 - [] ----D C:\Users\betto\AppData\Roaming\NVIDIA
O43 - CFD: 30/04/2012 - 22:43:06 - [] ----D C:\Users\betto\AppData\Roaming\offspringfling
O43 - CFD: 24/01/2011 - 23:03:32 - [] ----D C:\Users\betto\AppData\Roaming\OpenOffice.org
O43 - CFD: 15/04/2015 - 09:43:48 - [] ----D C:\Users\betto\AppData\Roaming\Optimizer Pro =>PUP.OptimizerPro
O43 - CFD: 05/02/2010 - 00:21:24 - [] ----D C:\Users\betto\AppData\Roaming\PC Suite
O43 - CFD: 13/07/2011 - 20:46:38 - [] ----D C:\Users\betto\AppData\Roaming\Picsoft
O43 - CFD: 12/11/2013 - 07:26:30 - [] ----D C:\Users\betto\AppData\Roaming\PJShooter
O43 - CFD: 02/10/2011 - 20:53:15 - [] ----D C:\Users\betto\AppData\Roaming\PlayFirst
O43 - CFD: 22/04/2013 - 17:06:00 - [] ----D C:\Users\betto\AppData\Roaming\PlightOfTheZombie
O43 - CFD: 01/11/2011 - 11:34:51 - [] ----D C:\Users\betto\AppData\Roaming\Pogo Games
O43 - CFD: 28/04/2010 - 22:07:10 - [] ----D C:\Users\betto\AppData\Roaming\Prison Break
O43 - CFD: 08/01/2011 - 16:12:40 - [] ----D C:\Users\betto\AppData\Roaming\ProtectDisc
O43 - CFD: 21/07/2012 - 20:06:35 - [] ----D C:\Users\betto\AppData\Roaming\RedDotGames
O43 - CFD: 09/03/2013 - 20:12:14 - [] ----D C:\Users\betto\AppData\Roaming\RetroCityRampage
O43 - CFD: 12/08/2012 - 14:04:20 - [] ----D C:\Users\betto\AppData\Roaming\rigonauts
O43 - CFD: 29/08/2010 - 12:41:21 - [] ----D C:\Users\betto\AppData\Roaming\Roogoo
O43 - CFD: 19/11/2012 - 18:33:20 - [] ----D C:\Users\betto\AppData\Roaming\Rovio
O43 - CFD: 05/02/2010 - 00:15:41 - [] ----D C:\Users\betto\AppData\Roaming\Samsung
O43 - CFD: 13/02/2012 - 14:53:30 - [] ----D C:\Users\betto\AppData\Roaming\Scoregasm
O43 - CFD: 10/11/2011 - 22:32:53 - [] ----D C:\Users\betto\AppData\Roaming\Sky Bros
O43 - CFD: 22/06/2014 - 20:34:04 - [] ----D C:\Users\betto\AppData\Roaming\Skype
O43 - CFD: 25/02/2015 - 17:37:50 - [] ----D C:\Users\betto\AppData\Roaming\Soldiers939
O43 - CFD: 12/01/2015 - 02:00:11 - [] ----D C:\Users\betto\AppData\Roaming\Songbird2
O43 - CFD: 25/02/2015 - 17:37:48 - [] ----D C:\Users\betto\AppData\Roaming\sparta111
O43 - CFD: 01/02/2012 - 21:54:55 - [] ----D C:\Users\betto\AppData\Roaming\StageManager.BD092818F67280F4B42B04877600987F0111B594.1
O43 - CFD: 13/02/2015 - 21:18:09 - [] ----D C:\Users\betto\AppData\Roaming\Steam
O43 - CFD: 25/02/2015 - 19:22:18 - [0] ----D C:\Users\betto\AppData\Roaming\StormFall =>Adware.StormFall
O43 - CFD: 15/04/2015 - 11:05:26 - [] ----D C:\Users\betto\AppData\Roaming\systweak
O43 - CFD: 28/09/2009 - 16:40:22 - [] ----D C:\Users\betto\AppData\Roaming\Template
O43 - CFD: 22/04/2011 - 20:03:16 - [] ----D C:\Users\betto\AppData\Roaming\Thoughtquake
O43 - CFD: 28/05/2011 - 14:45:23 - [] ----D C:\Users\betto\AppData\Roaming\THQ
O43 - CFD: 22/05/2011 - 21:49:21 - [] ----D C:\Users\betto\AppData\Roaming\Tomato
O43 - CFD: 19/07/2011 - 19:49:28 - [] ----D C:\Users\betto\AppData\Roaming\TomTom
O43 - CFD: 18/03/2011 - 21:04:19 - [] ----D C:\Users\betto\AppData\Roaming\Tower Builder Game
O43 - CFD: 07/12/2011 - 18:54:56 - [] ----D C:\Users\betto\AppData\Roaming\Trine2
O43 - CFD: 25/04/2013 - 20:06:35 - [] ----D C:\Users\betto\AppData\Roaming\Unity
O43 - CFD: 08/02/2014 - 09:04:56 - [] ----D C:\Users\betto\AppData\Roaming\Upper Byte
O43 - CFD: 15/04/2015 - 19:50:25 - [] ----D C:\Users\betto\AppData\Roaming\uTorrent =>P2P.µTorrent
O43 - CFD: 09/12/2011 - 23:44:01 - [] ----D C:\Users\betto\AppData\Roaming\Visan
O43 - CFD: 12/04/2015 - 00:26:24 - [] ----D C:\Users\betto\AppData\Roaming\vlc
O43 - CFD: 15/04/2015 - 11:03:09 - [] ----D C:\Users\betto\AppData\Roaming\VOPackage =>Adware.Downware
O43 - CFD: 21/03/2012 - 18:50:04 - [] ----D C:\Users\betto\AppData\Roaming\Waveform
O43 - CFD: 13/08/2013 - 20:38:17 - [] ----D C:\Users\betto\AppData\Roaming\Wayforward Technologies
O43 - CFD: 14/07/2009 - 08:58:20 - [] ----D C:\Users\betto\AppData\Roaming\WinRAR
O43 - CFD: 15/04/2015 - 20:09:09 - [] ----D C:\Users\betto\AppData\Roaming\ZHP =>.Nicolas Coolman
O43 - CFD: 22/12/2010 - 22:05:53 - [] ----D C:\Users\betto\AppData\Roaming\ZombieDriver
O43 - CFD: 23/09/2010 - 22:56:02 - [] ----D C:\Users\betto\AppData\Roaming\Zylom
O43 - CFD: 05/11/2011 - 22:12:26 - [] ----D C:\Users\betto\AppData\Local\.inapptracking
O43 - CFD: 19/08/2010 - 19:53:02 - [] ----D C:\Users\betto\AppData\Local\119611678098597108
O43 - CFD: 19/08/2010 - 11:00:58 - [] ----D C:\Users\betto\AppData\Local\119611678099186932
O43 - CFD: 19/08/2010 - 19:53:06 - [] ----D C:\Users\betto\AppData\Local\119614890734134516
O43 - CFD: 19/08/2010 - 11:01:04 - [] ----D C:\Users\betto\AppData\Local\119614890734724340
O43 - CFD: 04/04/2011 - 01:02:18 - [] ----D C:\Users\betto\AppData\Local\123KickIt
O43 - CFD: 27/08/2011 - 13:31:18 - [] ----D C:\Users\betto\AppData\Local\28050
O43 - CFD: 28/08/2010 - 01:46:32 - [] ----D C:\Users\betto\AppData\Local\2K Games
O43 - CFD: 31/07/2010 - 12:38:36 - [] ----D C:\Users\betto\AppData\Local\4A Games
O43 - CFD: 15/04/2015 - 09:41:51 - [] ----D C:\Users\betto\AppData\Local\65682200-1429090907-0920-0521-174701000000
O43 - CFD: 15/04/2015 - 10:00:12 - [] ----D C:\Users\betto\AppData\Local\65682200-1429091993-0920-0521-174701000000
O43 - CFD: 02/11/2012 - 19:52:17 - [] ----D C:\Users\betto\AppData\Local\Activision
O43 - CFD: 15/04/2015 - 02:00:36 - [] ----D C:\Users\betto\AppData\Local\Adobe
O43 - CFD: 06/07/2010 - 17:33:18 - [] ----D C:\Users\betto\AppData\Local\aladdin
O43 - CFD: 09/06/2011 - 19:32:04 - [] ----D C:\Users\betto\AppData\Local\ALI213
O43 - CFD: 11/07/2009 - 10:28:19 - [] -SH-D C:\Users\betto\AppData\Local\Application Data
O43 - CFD: 12/01/2015 - 01:49:46 - [] ----D C:\Users\betto\AppData\Local\ArcSoft
O43 - CFD: 23/04/2012 - 10:22:58 - [] ----D C:\Users\betto\AppData\Local\ATI
O43 - CFD: 05/03/2015 - 19:55:41 - [] ----D C:\Users\betto\AppData\Local\Battle.net
O43 - CFD: 14/11/2010 - 13:32:03 - [] ----D C:\Users\betto\AppData\Local\Bit.Trip Beat
O43 - CFD: 03/03/2011 - 11:31:46 - [] ----D C:\Users\betto\AppData\Local\BIT.TRIP RUNNER
O43 - CFD: 19/04/2012 - 14:49:38 - [] ----D C:\Users\betto\AppData\Local\BladesOfTime
O43 - CFD: 21/02/2015 - 22:13:05 - [] ----D C:\Users\betto\AppData\Local\Blizzard
O43 - CFD: 21/02/2015 - 21:46:27 - [] ----D C:\Users\betto\AppData\Local\Blizzard Entertainment
O43 - CFD: 27/12/2010 - 15:53:39 - [] ----D C:\Users\betto\AppData\Local\cache
O43 - CFD: 16/07/2009 - 18:36:37 - [] ----D C:\Users\betto\AppData\Local\CAPCOM
O43 - CFD: 09/11/2010 - 00:30:02 - [] --H-D C:\Users\betto\AppData\Local\ChenzoPark
O43 - CFD: 02/11/2014 - 21:17:56 - [] ----D C:\Users\betto\AppData\Local\com.gamehouse.acid
O43 - CFD: 13/09/2010 - 22:28:25 - [] ----D C:\Users\betto\AppData\Local\Criterion Games
O43 - CFD: 25/09/2012 - 21:22:36 - [] ----D C:\Users\betto\AppData\Local\CuteThingsDyingViolently
O43 - CFD: 23/09/2010 - 10:37:00 - [] ----D C:\Users\betto\AppData\Local\Darksiders
O43 - CFD: 14/08/2012 - 21:13:33 - [] ----D C:\Users\betto\AppData\Local\Darksiders2
O43 - CFD: 02/10/2010 - 20:58:20 - [] ----D C:\Users\betto\AppData\Local\Deep Silver
O43 - CFD: 07/04/2012 - 08:39:32 - [] ----D C:\Users\betto\AppData\Local\Demiurge Studios
O43 - CFD: 26/10/2011 - 23:29:54 - [] ----D C:\Users\betto\AppData\Local\Disney Interactive Studios
O43 - CFD: 03/10/2010 - 11:50:11 - [0] ----D C:\Users\betto\AppData\Local\DogFighter
O43 - CFD: 09/02/2013 - 20:22:40 - [] ----D C:\Users\betto\AppData\Local\Downloaded Installations
O43 - CFD: 16/08/2010 - 22:07:37 - [] ----D C:\Users\betto\AppData\Local\DropSpiderGames
O43 - CFD: 20/09/2011 - 22:15:24 - [] ----D C:\Users\betto\AppData\Local\dxhr
O43 - CFD: 17/05/2012 - 10:34:03 - [] ----D C:\Users\betto\AppData\Local\EA Games
O43 - CFD: 26/05/2012 - 09:47:15 - [] ----D C:\Users\betto\AppData\Local\Electronic Arts
O43 - CFD: 23/07/2013 - 00:16:01 - [] ----D C:\Users\betto\AppData\Local\EMU
O43 - CFD: 23/07/2009 - 18:55:56 - [] ----D C:\Users\betto\AppData\Local\eMule
O43 - CFD: 31/07/2010 - 15:28:01 - [] ----D C:\Users\betto\AppData\Local\Fallout3
O43 - CFD: 26/10/2010 - 21:42:49 - [] ----D C:\Users\betto\AppData\Local\FalloutNV
O43 - CFD: 23/02/2013 - 14:56:42 - [] ----D C:\Users\betto\AppData\Local\FANiSO
O43 - CFD: 13/09/2010 - 23:00:14 - [] ----D C:\Users\betto\AppData\Local\FlatOut Ultimate Carnage
O43 - CFD: 25/05/2012 - 22:10:19 - [] ----D C:\Users\betto\AppData\Local\FLT
O43 - CFD: 28/02/2013 - 00:56:13 - [] ----D C:\Users\betto\AppData\Local\Gaijin Games
O43 - CFD: 11/02/2013 - 20:19:38 - [] ----D C:\Users\betto\AppData\Local\Ghost
O43 - CFD: 15/08/2009 - 15:03:40 - [] ----D C:\Users\betto\AppData\Local\GlobalSCAPE
O43 - CFD: 15/04/2015 - 09:58:02 - [] ----D C:\Users\betto\AppData\Local\globalUpdate =>PUP.GlobalUpdate
O43 - CFD: 15/04/2015 - 16:49:13 - [] ----D C:\Users\betto\AppData\Local\gmsd_fr_424 =>PUP.CrossRider
O43 - CFD: 09/10/2014 - 12:02:50 - [] ----D C:\Users\betto\AppData\Local\Google
O43 - CFD: 13/06/2011 - 17:08:52 - [] ----D C:\Users\betto\AppData\Local\Halfbrick
O43 - CFD: 11/07/2009 - 10:28:19 - [] -SH-D C:\Users\betto\AppData\Local\Historique
O43 - CFD: 05/10/2011 - 21:34:05 - [] ----D C:\Users\betto\AppData\Local\HP
O43 - CFD: 21/04/2012 - 16:43:55 - [] ----D C:\Users\betto\AppData\Local\Insanely Twisted Shadow Planet
O43 - CFD: 13/06/2011 - 17:06:18 - [] ----D C:\Users\betto\AppData\Local\Intel
O43 - CFD: 26/06/2011 - 11:07:12 - [] ----D C:\Users\betto\AppData\Local\IsolatedStorage
O43 - CFD: 06/12/2011 - 22:01:28 - [] ----D C:\Users\betto\AppData\Local\Lazy 8 Studios
O43 - CFD: 28/10/2010 - 20:27:31 - [] ----D C:\Users\betto\AppData\Local\LucasArts
O43 - CFD: 22/06/2012 - 20:18:44 - [] ----D C:\Users\betto\AppData\Local\Macromedia
O43 - CFD: 04/10/2011 - 06:29:32 - [] ----D C:\Users\betto\AppData\Local\Mad Skills Motocross
O43 - CFD: 23/08/2013 - 22:52:40 - [] ----D C:\Users\betto\AppData\Local\Microsoft
O43 - CFD: 20/03/2015 - 21:07:44 - [] ----D C:\Users\betto\AppData\Local\Microsoft Games
O43 - CFD: 22/12/2009 - 19:54:37 - [] ----D C:\Users\betto\AppData\Local\Microsoft Help
O43 - CFD: 11/07/2009 - 21:13:25 - [] ----D C:\Users\betto\AppData\Local\Mozilla
O43 - CFD: 16/05/2013 - 22:05:47 - [] ----D C:\Users\betto\AppData\Local\Ms. Splosion Man
O43 - CFD: 11/03/2013 - 19:30:30 - [] ----D C:\Users\betto\AppData\Local\MumboJumbo
O43 - CFD: 07/02/2011 - 01:43:32 - [] ----D C:\Users\betto\AppData\Local\Nero
O43 - CFD: 16/07/2014 - 13:46:24 - [] ----D C:\Users\betto\AppData\Local\NVIDIA
O43 - CFD: 20/11/2014 - 18:18:03 - [] ----D C:\Users\betto\AppData\Local\Oberon Games
O43 - CFD: 01/02/2014 - 21:43:11 - [] ----D C:\Users\betto\AppData\Local\Octodad Dadliest Catch
O43 - CFD: 07/11/2010 - 18:09:44 - [] ----D C:\Users\betto\AppData\Local\Ongaku
O43 - CFD: 23/10/2011 - 10:44:41 - [] ----D C:\Users\betto\AppData\Local\PAYDAY
O43 - CFD: 16/07/2009 - 00:16:55 - [] ----D C:\Users\betto\AppData\Local\playlogic
O43 - CFD: 11/07/2009 - 10:32:53 - [] ----D C:\Users\betto\AppData\Local\PowerCinema
O43 - CFD: 22/09/2010 - 14:45:04 - [] ----D C:\Users\betto\AppData\Local\PunkBuster
O43 - CFD: 08/11/2009 - 22:59:40 - [] ----D C:\Users\betto\AppData\Local\Rockstar Games
O43 - CFD: 24/08/2010 - 01:12:47 - [] ----D C:\Users\betto\AppData\Local\Sidhe
O43 - CFD: 01/08/2014 - 18:05:24 - [] ----D C:\Users\betto\AppData\Local\SKIDROW
O43 - CFD: 15/08/2012 - 19:43:32 - [] ----D C:\Users\betto\AppData\Local\Skyrim
O43 - CFD: 15/04/2015 - 18:42:19 - [] ----D C:\Users\betto\AppData\Local\SmartWeb =>PUP.SmartWeb
O43 - CFD: 03/03/2013 - 20:15:50 - [] ----D C:\Users\betto\AppData\Local\Sniper Elite Nazi Zombie Army
O43 - CFD: 02/05/2012 - 20:22:33 - [] ----D C:\Users\betto\AppData\Local\SniperV2
O43 - CFD: 25/02/2015 - 17:37:45 - [0] ----D C:\Users\betto\AppData\Local\Soldiers
O43 - CFD: 12/01/2015 - 02:01:12 - [] ----D C:\Users\betto\AppData\Local\Songbird2
O43 - CFD: 25/02/2015 - 19:22:36 - [0] ----D C:\Users\betto\AppData\Local\Sparta
O43 - CFD: 10/09/2011 - 14:19:37 - [] ----D C:\Users\betto\AppData\Local\SSDD
O43 - CFD: 27/06/2010 - 18:33:02 - [] ----D C:\Users\betto\AppData\Local\storage
O43 - CFD: 25/02/2015 - 17:37:47 - [] ----D C:\Users\betto\AppData\Local\StormFall =>Adware.StormFall
O43 - CFD: 15/04/2015 - 12:03:37 - [] ----D C:\Users\betto\AppData\Local\StormWatch =>PUP.StormWatch
O43 - CFD: 08/01/2011 - 16:13:47 - [] ----D C:\Users\betto\AppData\Local\Targem
O43 - CFD: 15/04/2015 - 19:57:30 - [] ----D C:\Users\betto\AppData\Local\Temp
O43 - CFD: 11/07/2009 - 10:28:19 - [] -SH-D C:\Users\betto\AppData\Local\Temporary Internet Files
O43 - CFD: 19/07/2011 - 19:49:28 - [] ----D C:\Users\betto\AppData\Local\TomTom
O43 - CFD: 15/09/2012 - 08:00:39 - [] ----D C:\Users\betto\AppData\Local\Transcripted
O43 - CFD: 12/08/2011 - 13:53:28 - [] ----D C:\Users\betto\AppData\Local\Two Tribes
O43 - CFD: 08/10/2010 - 23:44:36 - [] ----D C:\Users\betto\AppData\Local\Ubisoft
O43 - CFD: 24/09/2011 - 14:05:00 - [] ----D C:\Users\betto\AppData\Local\Ubisoft Game Launcher
O43 - CFD: 25/07/2013 - 07:21:51 - [0] ----D C:\Users\betto\AppData\Local\Unity
O43 - CFD: 20/12/2010 - 22:25:33 - [] ----D C:\Users\betto\AppData\Local\VirtualStore
O43 - CFD: 19/07/2009 - 12:12:20 - [] ----D C:\Users\betto\AppData\Local\VirtuaTennis2009
O43 - CFD: 12/11/2011 - 09:32:06 - [] ----D C:\Users\betto\AppData\Local\WB Games
O43 - CFD: 08/01/2011 - 17:23:36 - [] ----D C:\Users\betto\AppData\Local\WBFSManager
O43 - CFD: 15/04/2015 - 10:00:41 - [] ----D C:\Users\betto\AppData\Local\Weather_Protector_LLC =>PUP.StormWatch
O43 - CFD: 29/01/2011 - 13:39:34 - [] ----D C:\Users\betto\AppData\Local\Wii_Converter_GUI
O43 - CFD: 23/09/2010 - 22:57:18 - [0] ----D C:\Users\betto\AppData\Local\Zylom Games
O43 - CFD: 21/01/2008 - 05:20:45 - [] R---D C:\Users\betto\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Accessories
O43 - CFD: 11/07/2009 - 10:32:45 - [] R---D C:\Users\betto\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Administrative Tools
O43 - CFD: 28/11/2010 - 23:46:38 - [] ----D C:\Users\betto\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Alawar Games
O43 - CFD: 15/04/2015 - 11:00:24 - [] ----D C:\Users\betto\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\AnyProtect PC Backup =>PUP.AnyProtect
O43 - CFD: 02/10/2010 - 16:55:28 - [] ----D C:\Users\betto\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Chime
O43 - CFD: 29/11/2010 - 20:42:31 - [] ----D C:\Users\betto\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Clones
O43 - CFD: 23/04/2012 - 09:06:50 - [0] ----D C:\Users\betto\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Driver Cleaner Pro
O43 - CFD: 12/11/2012 - 00:53:49 - [] ----D C:\Users\betto\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Fly'N
O43 - CFD: 23/05/2011 - 22:58:44 - [] ----D C:\Users\betto\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\FormatFactory
O43 - CFD: 29/11/2010 - 19:00:54 - [] ----D C:\Users\betto\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Gods vs. Humans
O43 - CFD: 20/03/2010 - 10:54:54 - [0] ----D C:\Users\betto\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Konami
O43 - CFD: 21/01/2008 - 05:20:45 - [] R---D C:\Users\betto\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Maintenance
O43 - CFD: 08/08/2009 - 22:52:32 - [] ----D C:\Users\betto\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\MediaInfo
O43 - CFD: 04/03/2012 - 19:08:09 - [] ----D C:\Users\betto\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\mkv2vob
O43 - CFD: 06/09/2010 - 22:15:54 - [] ----D C:\Users\betto\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Monster Trucks Nitro
O43 - CFD: 07/01/2012 - 18:21:26 - [0] ----D C:\Users\betto\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Mr QuestionMan
O43 - CFD: 15/11/2010 - 19:57:07 - [] ----D C:\Users\betto\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Nimbus
O43 - CFD: 08/01/2015 - 23:32:19 - [0] ----D C:\Users\betto\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Orange
O43 - CFD: 10/10/2014 - 18:08:38 - [] ----D C:\Users\betto\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Programmes audio
O43 - CFD: 29/11/2010 - 21:22:04 - [] ----D C:\Users\betto\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Racers' Islands - Crazy Arenas
O43 - CFD: 05/12/2010 - 14:08:13 - [] ----D C:\Users\betto\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\RUSH
O43 - CFD: 06/09/2010 - 17:38:39 - [] ----D C:\Users\betto\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Serious Sam 2 Patch 2.066.00
O43 - CFD: 25/02/2015 - 17:37:50 - [] ----D C:\Users\betto\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Soldiers
O43 - CFD: 15/04/2015 - 16:54:31 - [] R---D C:\Users\betto\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup
O43 - CFD: 15/04/2015 - 10:00:36 - [] ----D C:\Users\betto\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\StormWatch =>PUP.StormWatch
O43 - CFD: 10/10/2014 - 18:08:38 - [] ----D C:\Users\betto\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Suite NCH Software
O43 - CFD: 27/10/2010 - 18:09:34 - [] ----D C:\Users\betto\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\The Ball
O43 - CFD: 14/11/2010 - 18:59:09 - [] ----D C:\Users\betto\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\The UnderGarden
O43 - CFD: 09/04/2013 - 19:43:47 - [] ----D C:\Users\betto\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Ubisoft
O43 - CFD: 12/11/2011 - 10:28:27 - [] ----D C:\Users\betto\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Unlocker
O43 - CFD: 12/11/2014 - 19:58:48 - [] ----D C:\Users\betto\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\VirtualDJ
O43 - CFD: 15/04/2015 - 09:38:33 - [] ----D C:\Users\betto\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\VOPackage =>Adware.Downware
O43 - CFD: 28/08/2010 - 19:25:25 - [] ----D C:\Users\betto\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Windosill
O43 - CFD: 14/07/2009 - 08:55:50 - [] ----D C:\Users\betto\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\WinRAR
O43 - CFD: 01/08/2010 - 14:56:19 - [] ----D C:\Users\betto\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\WMV9 VCM
~ Program Folder: 841 Scanned in 00mn 01s



---\\ Derniers fichiers modifiés ou crées sous Windows et System32 (O44)
O44 - LFC:[MD5.9A3A331881A112551748860EDD857A26] - 10/04/2015 - 20:56:56 ---A- . (.Infonaut - Infonaut Driver x64.) -- C:\Windows\System32\Drivers\innfd_1_10_0_14.sys [58224] =>PUP.Infonaut
O44 - LFC:[MD5.8AFC5E0C18CCC7407475A1927D7C8CB7] - 13/04/2015 - 16:33:00 ---A- . (...) -- C:\Windows\MEMORY.DMP [725873222]
O44 - LFC:[MD5.0DFDB1506F5C747986D345711F9ACA8A] - 15/04/2015 - 08:38:25 ---A- . (...) -- C:\Windows\System32\Drivers\SPPD.sys [21976]
O44 - LFC:[MD5.D41D8CD98F00B204E9800998ECF8427E] - 15/04/2015 - 09:05:34 --HA- . (...) -- C:\Windows\System32\Drivers\Msft_Kernel_webTinstMKTN84_01009.Wdf [0] =>PUP.CorsicaTechnologies
O44 - LFC:[MD5.D1CEC2E76611EE3DED4F875AD379FA02] - 15/04/2015 - 10:04:47 ---A- . (.Pas de propriétaire - Registry Optimizer.) -- C:\Windows\System32\roboot64.exe [20248]
O44 - LFC:[MD5.CB8572E790FCE09714143741C20E9934] - 15/04/2015 - 10:05:16 ---A- . (...) -- C:\Windows\System32\sasnative64.exe [16896]
O44 - LFC:[MD5.63E10562FF96379A218483E31F91295A] - 15/04/2015 - 15:36:47 ---A- . (...) -- C:\Windows\ntbtlog.txt [223784]
O44 - LFC:[MD5.FFDE4C875B411308EA7BB49BF655B6F5] - 15/04/2015 - 15:38:27 ---A- . (...) -- C:\Windows\System32\DCLOff.ini [8496]
O44 - LFC:[MD5.EA88046DC9ECEDA15962740E2AB7060B] - 15/04/2015 - 15:40:35 ---A- . (...) -- C:\Windows\setupact.log [5248]
O44 - LFC:[MD5.87143DE05C17685D4E1498E0A6874A4A] - 15/04/2015 - 17:46:47 ---A- . (...) -- C:\Windows\PFRO.log [431876]
O44 - LFC:[MD5.AD641DB8897E641F1FA55075D2225651] - 15/04/2015 - 17:46:52 -S-A- . (...) -- C:\Windows\bootstat.dat [67584]
O44 - LFC:[MD5.D41D8CD98F00B204E9800998ECF8427E] - 15/04/2015 - 17:47:40 ---A- . (...) -- C:\Windows\System32\LogConfigTemp.xml [0]
O44 - LFC:[MD5.F9BCD87F979773F95408985F53EA4626] - 15/04/2015 - 17:54:09 ---A- . (...) -- C:\Windows\System32\PerfStringBackup.INI [1608814]
O44 - LFC:[MD5.113975D32130C4368B0E94B88E0E301A] - 15/04/2015 - 17:54:09 ---A- . (...) -- C:\Windows\System32\perfc009.dat [118780]
O44 - LFC:[MD5.CF7879BE02B843521BF043308C5ABA6A] - 15/04/2015 - 17:54:09 ---A- . (...) -- C:\Windows\System32\perfc00C.dat [144674]
O44 - LFC:[MD5.54898F8CD2F7E5B09D3CF9DA97E2F9EB] - 15/04/2015 - 17:54:09 ---A- . (...) -- C:\Windows\System32\perfh009.dat [632154]
O44 - LFC:[MD5.57A20A0900B00CC1B34D9F0297FCDC88] - 15/04/2015 - 17:54:09 ---A- . (...) -- C:\Windows\System32\perfh00C.dat [719846]
O44 - LFC:[MD5.457945C0968C63124BB4B97FD05DF4BA] - 15/04/2015 - 18:14:35 ---A- . (...) -- C:\Windows\WindowsUpdate.log [1197341]
O44 - LFC:[MD5.26C43960C99EE861A5D0EDC4DCF3B1C3] - 15/04/2015 - 18:33:43 ---A- . (.Malwarebytes Corporation - Malwarebytes Anti-Malware.) -- C:\Windows\System32\Drivers\MBAMSwissArmy.sys [129752]
~ Files: 19 Scanned in 00mn 10s



---\\ Derniers fichiers créés dans Windows Prefetcher (O45)
O45 - LFCP:[MD5.07909AC1D10E55E75831908FE1BFDBE1] - 15/04/2015 - 18:02:11 ---A- - C:\Windows\Prefetch\STORMWATCHSRV.EXE-C71685E0.pf =>PUP.StormWatch
~ Prefetcher: 1 Scanned in 00mn 00s



---\\ Export de clé d'application autorisée (O47)
O47 - AAKE:Key Export SP - "C:\Program Files (x86)\FlashFXP\FlashFXP.exe" [Enabled] .(.IniCom Networks, Inc..) -- C:\Program Files (x86)\FlashFXP\FlashFXP.exe
O47 - AAKE:Key Export SP - "C:\Program Files (x86)\FlashFXP 4\FlashFXP.exe" [Enabled] .(...) -- C:\Program Files (x86)\FlashFXP 4\FlashFXP.exe (.not file.)
O47 - AAKE:Key Export SP - "C:\Program Files (x86)\Orange\Connectivity\ConnectivityManager.exe" [Enabled] .(...) -- C:\Program Files (x86)\Orange\Connectivity\ConnectivityManager.exe (.not file.)
O47 - AAKE:Key Export DP - "C:\Program Files (x86)\FlashFXP\FlashFXP.exe" [Enabled] .(.IniCom Networks, Inc..) -- C:\Program Files (x86)\FlashFXP\FlashFXP.exe
O47 - AAKE:Key Export DP - "C:\Program Files (x86)\FlashFXP 4\FlashFXP.exe" [Enabled] .(...) -- C:\Program Files (x86)\FlashFXP 4\FlashFXP.exe (.not file.)
~ Keys Export: 5 Scanned in 00mn 00s



---\\ Déni du service (Local Security Authority) (O48)
O48 - LSA:Local Security Authority Authentication Packages . (.Microsoft Corporation - Microsoft Authentication Package v1.0.) -- C:\Windows\System32\msv1_0.dll
O48 - LSA:Local Security Authority Notification Packages . (.Microsoft Corporation - Moteur du client de l'Éditeur de configuration de sécurité Windows.) -- C:\Windows\System32\scecli.dll
O48 - LSA:Local Security Authority Security Packages . (.Microsoft Corporation - Package de sécurité Kerberos.) -- C:\Windows\System32\kerberos.dll
O48 - LSA:Local Security Authority Security Packages . (.Microsoft Corporation - Microsoft Authentication Package v1.0.) -- C:\Windows\System32\msv1_0.dll
O48 - LSA:Local Security Authority Security Packages . (.Microsoft Corporation - TLS / SSL Security Provider.) -- C:\Windows\System32\schannel.dll
O48 - LSA:Local Security Authority Security Packages . (.Microsoft Corporation - Microsoft Digest Access.) -- C:\Windows\System32\wdigest.dll
O48 - LSA:Local Security Authority Security Packages . (.Microsoft Corporation - Web Service Security Package.) -- C:\Windows\System32\tspkg.dll
~ LSA: 7 Scanned in 00mn 00s



---\\ Contrôle du Safe Boot (CSB) (O49)
O49 - CSB:Control Safe Boot HKLM\...\CCS\Minimal\sermouse.sys . (.Microsoft Corporation - Pilote de filtre souris série.) -- C:\Windows\System32\Drivers\sermouse.sys
O49 - CSB:Control Safe Boot HKLM\...\CCS\Minimal\vga.sys . (.Microsoft Corporation - VGA/Super VGA Video Driver.) -- C:\Windows\System32\Drivers\vga.sys
O49 - CSB:Control Safe Boot HKLM\...\CCS\Minimal\vgasave.sys . (...) -- C:\Windows\System32\Drivers\vgasave.sys (.not file.)
O49 - CSB:Control Safe Boot HKLM\...\CCS\Minimal\volmgr.sys . (.Microsoft Corporation - Volume Manager Driver.) -- C:\Windows\System32\Drivers\volmgr.sys
O49 - CSB:Control Safe Boot HKLM\...\CCS\Minimal\volmgrx.sys . (.Microsoft Corporation - Volume Manager Extension Driver.) -- C:\Windows\System32\Drivers\volmgrx.sys
O49 - CSB:Control Safe Boot HKLM\...\CCS\Network\ipnat.sys . (.Microsoft Corporation - IP Network Address Translator.) -- C:\Windows\System32\Drivers\ipnat.sys
O49 - CSB:Control Safe Boot HKLM\...\CCS\Network\nsiproxy.sys . (.Microsoft Corporation - NSI Proxy.) -- C:\Windows\System32\Drivers\nsiproxy.sys
O49 - CSB:Control Safe Boot HKLM\...\CCS\Network\rdpencdd.sys . (.Microsoft Corporation - RDP Miniport.) -- C:\Windows\System32\Drivers\rdpencdd.sys
O49 - CSB:Control Safe Boot HKLM\...\CCS\Network\sermouse.sys . (.Microsoft Corporation - Pilote de filtre souris série.) -- C:\Windows\System32\Drivers\sermouse.sys
O49 - CSB:Control Safe Boot HKLM\...\CCS\Network\vga.sys . (.Microsoft Corporation - VGA/Super VGA Video Driver.) -- C:\Windows\System32\Drivers\vga.sys
O49 - CSB:Control Safe Boot HKLM\...\CCS\Network\vgasave.sys . (...) -- C:\Windows\System32\Drivers\vgasave.sys (.not file.)
O49 - CSB:Control Safe Boot HKLM\...\CCS\Network\volmgr.sys . (.Microsoft Corporation - Volume Manager Driver.) -- C:\Windows\System32\Drivers\volmgr.sys
O49 - CSB:Control Safe Boot HKLM\...\CCS\Network\volmgrx.sys . (.Microsoft Corporation - Volume Manager Extension Driver.) -- C:\Windows\System32\Drivers\volmgrx.sys
~ CSB: 13 Scanned in 00mn 00s



---\\ Recherche d'infection sur les pilotes (HKLM)(TDSD) (O52)
O52 - TDSD: \Drivers32\"msacm.l3acm"="C:\Windows\System32\l3codeca.acm" . (.Fraunhofer Institut Integrierte Schaltungen - MPEG Layer-3 Audio Codec for MSACM.) -- C:\Windows\System32\l3codeca.acm
O52 - TDSD: \drivers.desc\"C:\Windows\System32\l3codeca.acm"="Fraunhofer IIS MPEG Layer-3 Codec" . (.Fraunhofer Institut Integrierte Schaltungen - MPEG Layer-3 Audio Codec for MSACM.) -- C:\Windows\System32\l3codeca.acm
~ TDSD: 2 Scanned in 00mn 00s



---\\ Enumération des clés de registre StartupReg (SMSR) (O53)
O53 - SMSR:HKLM\...\startupreg\Adobe ARM [Key] . (.Adobe Systems Incorporated - Adobe Reader and Acrobat Manager.) -- C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe =>.Adobe Systems Incorporated
O53 - SMSR:HKLM\...\startupreg\Adobe Reader Speed Launcher [Key] . (.Adobe Systems Incorporated - Adobe Acrobat SpeedLauncher.) -- C:\Program Files (x86)\Adobe\Reader 9.0\Reader\Reader_sl.exe
O53 - SMSR:HKLM\...\startupreg\AdobeAAMUpdater-1.0 [Key] . (.Adobe Systems Incorporated - Adobe Updater Startup Utility.) -- C:\Program Files (x86)\Common Files\Adobe\OOBE\PDApp\UWA\UpdaterStartupUtility.exe =>.Adobe Systems Incorporated
O53 - SMSR:HKLM\...\startupreg\AdobeCS5ServiceManager [Key] . (.Adobe Systems Incorporated - Adobe CS5 Service Manager.) -- C:\Program Files (x86)\Common Files\Adobe\CS5ServiceManager\CS5ServiceManager.exe
O53 - SMSR:HKLM\...\startupreg\AgentMonitor [Key] . (.Pas de propriétaire - AgentMon Application.) -- C:\Program Files (x86)\VTech\DownloadManager\System\AgentMonitor.exe
O53 - SMSR:HKLM\...\startupreg\ApnTBMon [Key] . (...) -- C:\Program Files (x86)\AskPartnerNetwork\Toolbar\Updater\TBNotifier.exe (.not file.) =>Toolbar.AskBar
O53 - SMSR:HKLM\...\startupreg\AutoStartNPSAgent [Key] . (.Samsung Electronics Co., Ltd. - NPSAgent.) -- C:\Program Files (x86)\Samsung\Samsung New PC Studio\NPSAgent.exe
O53 - SMSR:HKLM\...\startupreg\BgMonitor_{79662E04-7C6C-4d9f-84C7-88D8A56B10AA} [Key] . (...) -- C:\Program Files (x86)\Common Files\Ahead\Lib\NMBgMonitor.exe (.not file.)
O53 - SMSR:HKLM\...\startupreg\CanonQuickMenu [Key] . (.CANON INC. - Canon Quick Menu.) -- C:\Program Files (x86)\Canon\Quick Menu\CNQMMAIN.exe
O53 - SMSR:HKLM\...\startupreg\CCleaner Monitoring [Key] . (.Piriform Ltd - CCleaner.) -- C:\Program Files (x86)\CCleaner\CCleaner64.exe =>.Piriform Ltd
O53 - SMSR:HKLM\...\startupreg\DAEMON Tools Lite [Key] . (.Disc Soft Ltd - DAEMON Tools Lite.) -- C:\Program Files (x86)\DAEMON Tools Lite\DTLite.exe =>.DT Soft Ltd
O53 - SMSR:HKLM\...\startupreg\EPSON Stylus DX4000 Series [Key] . (...) -- C:\Windows\system32\spool\DRIVERS\x64\3\E_FATIBEE.exe (.not file.)
O53 - SMSR:HKLM\...\startupreg\gmsd_fr_424 [Key] . (...) -- C:\Program Files (x86)\gmsd_fr_424\gmsd_fr_424.exe (.not file.) =>PUP.CrossRider
O53 - SMSR:HKLM\...\startupreg\HP Deskjet 3070 B611 series (NET) [Key] . (.Hewlett-Packard Co. - ScanToPCActivationApp.) -- C:\Program Files\HP\HP Deskjet 3070 B611 series\Bin\ScanToPCActivationApp.exe =>.Hewlett-Packard Co
O53 - SMSR:HKLM\...\startupreg\HP Software Update [Key] . (.Hewlett-Packard - hpwuSchd Application.) -- C:\Program Files (x86)\Hp\HP Software Update\HPWuSchd2.exe =>.Hewlett-Packard Co
O53 - SMSR:HKLM\...\startupreg\IJNetworkScannerSelectorEX [Key] . (.CANON INC. - Canon IJ Network Scanner Selector EX.) -- C:\Program Files (x86)\Canon\IJ Network Scanner Selector EX\CNMNSST.exe
O53 - SMSR:HKLM\...\startupreg\Malwarebytes' Anti-Malware [Key] . (...) -- C:\Program Files (x86)\Malwarebytes' Anti-Malware\mbamgui.exe (.not file.)
O53 - SMSR:HKLM\...\startupreg\msnmsgr [Key] . (.Microsoft Corporation - Windows Live Messenger.) -- C:\Program Files (x86)\Windows Live\Messenger\MsnMsgr.exe
O53 - SMSR:HKLM\...\startupreg\Nvtmru [Key] . (.NVIDIA Corporation - NVIDIA NvTmru Application.) -- C:\Program Files (x86)\NVIDIA Corporation\NVIDIA Update Core\nvtmru.exe
O53 - SMSR:HKLM\...\startupreg\Optimizer Pro [Key] . (...) -- C:\Program Files (x86)\Optimizer Pro 3.79\OptProLauncher.exe =>PUP.OptimizerPro
O53 - SMSR:HKLM\...\startupreg\ORAHSSSessionManager [Key] . (...) -- C:\Program Files (x86)\Orange\SessionManager\SessionManager.exe (.not file.)
O53 - SMSR:HKLM\...\startupreg\Orange Installer [Key] . (...) -- C:\Program Files (x86)\Orange\Orange Installer\OrangeInstaller.exe
O53 - SMSR:HKLM\...\startupreg\PCMMediaSharing [Key] . (...) -- C:\Program Files (x86)\Acer Arcade Live\Acer HomeMedia Connect\Kernel\DMS\PCMMediaSharing.exe
O53 - SMSR:HKLM\...\startupreg\ProductReg [Key] . (.Acer - ProductR Application.) -- C:\Program Files\Acer\WR_PopUp\ProductReg.exe
O53 - SMSR:HKLM\...\startupreg\Registry Helper [Key] . (.SafeApp Software, LLC - Registry Helper.) -- C:\Program Files (x86)\Registry Helper\RegistryHelper.exe =>PUP.RegistryHelper
O53 - SMSR:HKLM\...\startupreg\SmartWeb [Key] . (...) -- C:\Users\betto\AppData\Local\SmartWeb\SmartWebHelper.exe =>PUP.SmartWeb
O53 - SMSR:HKLM\...\startupreg\StartCCC [Key] . (.Advanced Micro Devices, Inc. - Catalyst® Control Center Launcher.) -- c:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\CLIStart.exe =>.Advanced Micro Devices, Inc
O53 - SMSR:HKLM\...\startupreg\Steam [Key] . (.Valve Corporation - Steam Client Bootstrapper (buildbot_winslav.) -- C:\Program Files (x86)\Steam\Steam.exe
O53 - SMSR:HKLM\...\startupreg\StormWatch [Key] . (...) -- C:\Program Files (x86)\StormWatch\StormWatchApp.exe =>PUP.StormWatch
O53 - SMSR:HKLM\...\startupreg\swg [Key] . (...) -- C:\Program Files (x86)\Google\GoogleToolbarNotifier\GoogleToolbarNotifier.exe (.not file.)
O53 - SMSR:HKLM\...\startupreg\SwitchBoard [Key] . (.Adobe Systems Incorporated - SwitchBoard Server (32 bit).) -- C:\Program Files (x86)\Common Files\Adobe\SwitchBoard\SwitchBoard.exe
O53 - SMSR:HKLM\...\startupreg\TomTomHOME.exe [Key] . (...) -- C:\Program Files (x86)\TomTom HOME 2\TomTomHOMERunner.exe (.not file.)
O53 - SMSR:HKLM\...\startupreg\WinCheck [Key] . (...) -- C:\Users\betto\AppData\Local\65682200-1429090907-0920-0521-174701000000\bnsgAB2D.exe =>PUP.Wincheck
O53 - SMSR:HKLM\...\startupreg\Yontoo Desktop [Key] . (...) -- C:\Users\betto\AppData\Roaming\Yontoo\YontooDesktop.exe (.not file.) =>Adware.Yontoo
~ SMSR Keys: 35 Scanned in 00mn 00s



---\\ Enumération des clés de registre SecurityProviders (MCSP) (O54)
O54 - MCSP:[HKLM\...\CurrentControlSet\Control] - (SecurityProviders) - (.Microsoft Corporation - TS Single Sign On Security Package.) -- C:\Windows\System32\credssp.dll
O54 - MCSP:[HKLM\...\ControlSet001\Control] - (SecurityProviders) - (.Microsoft Corporation - TS Single Sign On Security Package.) -- C:\Windows\System32\credssp.dll
~ MSCP: 2 Scanned in 00mn 00s



---\\ Enumération des clés de registre PoliciesSystem (MWPS) (O55)
O55 - MWPS:[HKLM\...\Policies\System] - "ConsentPromptBehaviorAdmin"=2
O55 - MWPS:[HKLM\...\Policies\System] - "ConsentPromptBehaviorUser"=1
O55 - MWPS:[HKLM\...\Policies\System] - "EnableInstallerDetection"=1
O55 - MWPS:[HKLM\...\Policies\System] - "EnableLUA"=1
O55 - MWPS:[HKLM\...\Policies\System] - "EnableSecureUIAPaths"=1
O55 - MWPS:[HKLM\...\Policies\System] - "EnableVirtualization"=1
O55 - MWPS:[HKLM\...\Policies\System] - "PromptOnSecureDesktop"=1
O55 - MWPS:[HKLM\...\Policies\System] - "ValidateAdminCodeSignatures"=0
O55 - MWPS:[HKLM\...\Policies\System] - "dontdisplaylastusername"=0
O55 - MWPS:[HKLM\...\Policies\System] - "legalnoticecaption"=0
O55 - MWPS:[HKLM\...\Policies\System] - "legalnoticetext"=0
O55 - MWPS:[HKLM\...\Policies\System] - "scforceoption"=0
O55 - MWPS:[HKLM\...\Policies\System] - "shutdownwithoutlogon"=1
O55 - MWPS:[HKLM\...\Policies\System] - "undockwithoutlogon"=1
O55 - MWPS:[HKLM\...\Policies\System] - "FilterAdministratorToken"=0
O55 - MWPS:[HKLM\...\Policies\System] - "EnableUIADesktopToggle"=0
~ MWPS: 16 Scanned in 00mn 00s



---\\ Enumération des clés de registre PoliciesExplorer (MWPE) (O56)
O56 - MWPE:[HKCU\...\policies\Explorer] - "NoDriveTypeAutoRun"=0
O56 - MWPE:[HKCU\...\policies\Explorer] - "NoDriveAutoRun"=3
O56 - MWPE:[HKLM\...\policies\Explorer] - "NoActiveDesktop"=1
O56 - MWPE:[HKLM\...\policies\Explorer] - "NoActiveDesktopChanges"=1
O56 - MWPE:[HKLM\...\policies\Explorer] - "ForceActiveDesktopOn"=0
O56 - MWPE:[HKLM\...\policies\Explorer] - "BindDirectlyToPropertySetStorage"=0
O56 - MWPE:[HKLM\...\policies\Explorer] - "NoDriveAutoRun"=3
O56 - MWPE:[HKLM\...\policies\Explorer] - "NoDriveTypeAutoRun"=0
~ MWPE Keys: 8 Scanned in 00mn 00s



---\\ Liste des pilotes du système (SDL) (O58)
O58 - SDL:19/01/2009 - 19:32:22 ---A- . (.Protect Software GmbH - ProtectDisc x64/x86 Hybrid Driver.) -- C:\Windows\System32\Drivers\acedrv11.sys [334344]
O58 - SDL:21/01/2008 - 03:46:53 ---A- . (.Adaptec, Inc. - Adaptec Windows SAS/SATA Storport Driver.) -- C:\Windows\System32\Drivers\adp94xx.sys [486456]
O58 - SDL:21/01/2008 - 03:46:54 ---A- . (.Adaptec, Inc. - Adaptec Windows SATA Storport Driver.) -- C:\Windows\System32\Drivers\adpahci.sys [342584]
O58 - SDL:21/01/2008 - 03:46:54 ---A- . (.Adaptec, Inc. - Adaptec LH Ultra160 Driver (X64).) -- C:\Windows\System32\Drivers\adpu160m.sys [126520]
O58 - SDL:21/01/2008 - 03:47:27 ---A- . (.Adaptec, Inc. - Adaptec StorPort Ultra320 SCSI Driver (X64).) -- C:\Windows\System32\Drivers\adpu320.sys [185912]
O58 - SDL:21/01/2008 - 03:46:50 ---A- . (.Acer Laboratories Inc. - ALi mini IDE Driver.) -- C:\Windows\System32\Drivers\aliide.sys [15976]
O58 - SDL:21/01/2008 - 03:46:52 ---A- . (.Adaptec, Inc. - Adaptec RAID Storport Driver.) -- C:\Windows\System32\Drivers\arc.sys [90680]
O58 - SDL:21/01/2008 - 03:47:00 ---A- . (.Adaptec, Inc. - Adaptec SAS RAID WS03 Driver.) -- C:\Windows\System32\Drivers\arcsas.sys [91192]
O58 - SDL:16/05/2007 - 17:43:52 ---A- . (.Atheros Communications, Inc. - Atheros Extensible Wireless LAN device driver.) -- C:\Windows\System32\Drivers\athrxu6.sys [1039360]
O58 - SDL:29/07/2008 - 03:47:00 ---A- . (.Atheros Communications, Inc. - Atheros Extensible Wireless LAN device driver.) -- C:\Windows\System32\Drivers\athrxusb.sys [1075712]
O58 - SDL:23/02/2012 - 13:31:50 ---A- . (.Advanced Micro Devices - AMD High Definition Audio Function Driver.) -- C:\Windows\System32\Drivers\AtihdLH6.sys [92176]
O58 - SDL:06/04/2012 - 06:22:40 ---A- . (.Advanced Micro Devices, Inc. - ATI Radeon Kernel Mode Driver.) -- C:\Windows\System32\Drivers\atikmdag.sys [11174400]
O58 - SDL:06/04/2012 - 02:10:44 ---A- . (.Advanced Micro Devices, Inc. - AMD multi-vendor Miniport Driver.) -- C:\Windows\System32\Drivers\atikmpag.sys [343040]
O58 - SDL:24/04/2010 - 14:24:50 ---A- . (...) -- C:\Windows\System32\Drivers\atksgt.sys [314016]
O58 - SDL:21/01/2008 - 03:47:30 ---A- . (...) -- C:\Windows\System32\Drivers\bdasup.sys [15616]
O58 - SDL:18/09/2006 - 22:30:15 ---A- . (.Brother Industries, Ltd. - Windows ME USB Mass-Storage Bulk-Only Lower Filter Driver.) -- C:\Windows\System32\Drivers\BrFiltLo.sys [18432]
O58 - SDL:18/09/2006 - 22:30:15 ---A- . (.Brother Industries, Ltd. - Windows ME USB Mass-Storage Bulk-Only Upper Filter Driver.) -- C:\Windows\System32\Drivers\BrFiltUp.sys [8704]
O58 - SDL:02/11/2006 - 09:43:25 ---A- . (.Brother Industries Ltd. - Pilote Brother Série I/F (WDM).) -- C:\Windows\System32\Drivers\BrSerId.sys [86528]
O58 - SDL:18/09/2006 - 22:30:18 ---A- . (.Brother Industries Ltd. - Brother Serial driver (WDM version).) -- C:\Windows\System32\Drivers\BrSerWdm.sys [47104]
O58 - SDL:18/09/2006 - 22:30:18 ---A- . (...) -- C:\Windows\System32\Drivers\BrUsbMdm.sys [14976]
O58 - SDL:19/09/2006 - 12:42:33 ---A- . (...) -- C:\Windows\System32\Drivers\BrUsbSer.sys [14720]
O58 - SDL:21/01/2008 - 03:46:50 ---A- . (.CMD Technology, Inc. - CMD PCI IDE Bus Driver.) -- C:\Windows\System32\Drivers\cmdide.sys [18024]
O58 - SDL:02/11/2006 - 12:50:06 ---A- . (.Adaptec, Inc. - Adaptec Ultra SCSI miniport.) -- C:\Windows\System32\Drivers\djsvs.sys [88168]
O58 - SDL:21/01/2008 - 03:46:56 ---A- . (...) -- C:\Windows\System32\Drivers\E1G6032E.sys [146176]
O58 - SDL:13/06/2008 - 09:41:54 ---A- . (.Intel Corporation - Intel(R) Gigabit Network Connection NDIS 6 deserialized driver.) -- C:\Windows\System32\Drivers\e1y60x64.sys [316544]
O58 - SDL:21/01/2008 - 03:46:59 ---A- . (.Emulex - Storport Miniport Driver for LightPulse HBAs.) -- C:\Windows\System32\Drivers\elxstor.sys [397368]
O58 - SDL:10/04/2008 - 09:20:00 ---A- . (.Creative Technology Ltd. - Creative Audio Driver.) -- C:\Windows\System32\Drivers\gwfilt64.sys [28160]
O58 - SDL:03/07/2013 - 03:22:30 ---A- . (...) -- C:\Windows\System32\Drivers\hidparse.sys [31616]
O58 - SDL:21/01/2008 - 03:46:59 ---A- . (.Hewlett-Packard Company - Smart Array Storport Driver.) -- C:\Windows\System32\Drivers\HpCISSs.sys [47672]
O58 - SDL:25/06/2008 - 22:31:38 ---A- . (...) -- C:\Windows\System32\Drivers\iANSW60e.sys [124448]
O58 - SDL:29/07/2005 - 16:35:59 ---A- . (.Intel Corporation - Intel Matrix Storage Manager driver - x64.) -- C:\Windows\System32\Drivers\iaStor.sys [402456]
O58 - SDL:21/01/2008 - 03:46:59 ---A- . (.Intel Corporation - Intel Matrix Storage Manager driver (base).) -- C:\Windows\System32\Drivers\iaStorV.sys [290872]
O58 - SDL:02/11/2006 - 13:02:39 ---A- . (.Intel Corp./ICP vortex GmbH - Intel/ICP Raid Storport Driver.) -- C:\Windows\System32\Drivers\iirsp.sys [44648]
O58 - SDL:10/04/2015 - 20:56:56 ---A- . (.Infonaut - Infonaut Driver x64.) -- C:\Windows\System32\Drivers\innfd_1_10_0_14.sys [58224] =>PUP.Infonaut
O58 - SDL:30/09/2008 - 09:42:20 ---A- . (.Acer, Inc. - int15.) -- C:\Windows\System32\Drivers\int15_64.sys [17952]
O58 - SDL:23/05/2008 - 15:54:38 ---A- . (.Intel Corporation - Intel(R) Network Adapter Diagnostic Driver.) -- C:\Windows\System32\Drivers\iqvw64e.sys [33888]
O58 - SDL:02/11/2006 - 13:02:09 ---A- . (.Integrated Technology Express, Inc. - ITE IT8211 ATA/ATAPI SCSI miniport.) -- C:\Windows\System32\Drivers\iteatapi.sys [37480]
O58 - SDL:02/11/2006 - 13:02:09 ---A- . (.Integrated Technology Express, Inc. - ITE IT8212 ATA RAID SCSI miniport.) -- C:\Windows\System32\Drivers\iteraid.sys [37480]
O58 - SDL:21/01/2008 - 03:49:00 ---A- . (...) -- C:\Windows\System32\Drivers\ksthunk.sys [20864]
O58 - SDL:24/04/2010 - 14:24:50 ---A- . (...) -- C:\Windows\System32\Drivers\lirsgt.sys [43680]
O58 - SDL:21/01/2008 - 03:46:51 ---A- . (.LSI Logic - LSI Logic Fusion-MPT FC Driver (StorPort).) -- C:\Windows\System32\Drivers\lsi_fc.sys [113720]
O58 - SDL:21/01/2008 - 03:46:56 ---A- . (.LSI Logic - LSI Logic Fusion-MPT SAS Driver (StorPort).) -- C:\Windows\System32\Drivers\lsi_sas.sys [105016]
O58 - SDL:21/01/2008 - 03:47:01 ---A- . (.LSI Logic - LSI Logic Fusion-MPT SCSI Driver (StorPort).) -- C:\Windows\System32\Drivers\lsi_scsi.sys [113720]
O58 - SDL:17/01/2008 - 23:51:44 ---A- . (...) -- C:\Windows\System32\Drivers\Lycosa.sys [18816]
O58 - SDL:21/11/2014 - 06:14:08 ---A- . (.Malwarebytes Corporation - Malwarebytes Anti-Malware.) -- C:\Windows\System32\Drivers\mbam.sys [25816]
O58 - SDL:21/11/2014 - 06:14:12 ---A- . (...) -- C:\Windows\System32\Drivers\mbamchameleon.sys [93400]
O58 - SDL:15/04/2015 - 18:33:43 ---A- . (.Malwarebytes Corporation - Malwarebytes Anti-Malware.) -- C:\Windows\System32\Drivers\MBAMSwissArmy.sys [129752]
O58 - SDL:21/01/2008 - 03:46:59 ---A- . (.LSI Corporation - MEGASAS RAID Controller Driver for Windows Vista/Longhorn for x.) -- C:\Windows\System32\Drivers\megasas.sys [35896]
O58 - SDL:21/01/2008 - 03:46:56 ---A- . (.LSI Corporation, Inc. - LSI MegaRAID Software RAID Driver.) -- C:\Windows\System32\Drivers\MegaSR.sys [438328]
O58 - SDL:02/11/2006 - 13:02:24 ---A- . (.LSI Logic Corporation - MegaRAID RAID Controller Driver for Windows Vista/Longhorn for.) -- C:\Windows\System32\Drivers\Mraid35x.sys [39016]
O58 - SDL:21/01/2008 - 03:49:52 ---A- . (...) -- C:\Windows\System32\Drivers\mskssrv.sys [11008]
O58 - SDL:02/11/2006 - 10:37:30 ---A- . (...) -- C:\Windows\System32\Drivers\mspclock.sys [7040]
O58 - SDL:02/11/2006 - 10:37:30 ---A- . (...) -- C:\Windows\System32\Drivers\mspqm.sys [6656]
O58 - SDL:21/01/2008 - 03:49:52 ---A- . (...) -- C:\Windows\System32\Drivers\mstee.sys [7936]
O58 - SDL:04/11/2008 - 13:12:08 ---A- . (.Samsung Electronics, Inc. - MagicTunePremium Driver.) -- C:\Windows\System32\Drivers\MTiCtwl.sys [23096]
O58 - SDL:21/11/2014 - 06:14:18 ---A- . (...) -- C:\Windows\System32\Drivers\mwac.sys [64216]
O58 - SDL:02/11/2006 - 13:03:03 ---A- . (.IBM Corporation - IBM ServeRAID Controller Driver.) -- C:\Windows\System32\Drivers\nfrd960.sys [51816]
O58 - SDL:11/02/2011 - 22:23:34 ---A- . (.CACE Technologies, Inc. - npf.sys (NT5/6 AMD64) Kernel Driver.) -- C:\Windows\System32\Drivers\npf.sys [35344]
O58 - SDL:30/01/2008 - 10:48:32 ---A- . (.NewTech Infosystems, Inc. - NTI CD-ROM Filter Driver.) -- C:\Windows\System32\Drivers\NTIDrvr.sys [16384]
O58 - SDL:11/06/2014 - 09:57:41 ---A- . (.NVIDIA Corporation - NVIDIA HDMI Audio Driver.) -- C:\Windows\System32\Drivers\nvhda64v.sys [197408]
O58 - SDL:20/05/2014 - 03:44:03 ---A- . (.NVIDIA Corporation - NVIDIA Windows Kernel Mode Driver, Version 337.88.) -- C:\Windows\System32\Drivers\nvlddmkm.sys [12688328]
O58 - SDL:21/01/2008 - 03:46:54 ---A- . (.NVIDIA Corporation - NVIDIA® nForce(TM) RAID Driver.) -- C:\Windows\System32\Drivers\nvraid.sys [128056]
O58 - SDL:21/01/2008 - 03:46:54 ---A- . (.NVIDIA Corporation - NVIDIA® nForce(TM) Sata Performance Driver.) -- C:\Windows\System32\Drivers\nvstor.sys [54328]
O58 - SDL:11/04/2009 - 06:39:49 ---A- . (...) -- C:\Windows\System32\Drivers\ohci1394.sys [72448]
O58 - SDL:17/09/2007 - 15:53:34 ---A- . (.Nokia - PCCS Mode Change Filter Driver.) -- C:\Windows\System32\Drivers\pccsmcfdx64.sys [29184]
O58 - SDL:29/07/2008 - 17:53:48 ---A- . (.Egis Incorporated - Acer eDataSecurity Management PSD Filter Driver.) -- C:\Windows\System32\Drivers\psdfilter.sys [22064]
O58 - SDL:29/07/2008 - 17:53:50 ---A- . (.Egis Incorporated - Acer eDataSecurity Management PSD Named Pipe Driver.) -- C:\Windows\System32\Drivers\PSDNServ.sys [21040]
O58 - SDL:29/07/2008 - 17:53:50 ---A- . (.Egis Incorporated - Acer eDataSecurity Management PSD Virtual Disk Driver.) -- C:\Windows\System32\Drivers\PSDVdisk.sys [60976]
O58 - SDL:21/01/2008 - 03:46:52 ---A- . (.QLogic Corporation - QLogic Fibre Channel Stor Miniport Driver.) -- C:\Windows\System32\Drivers\ql2300.sys [1221176]
O58 - SDL:02/11/2006 - 12:50:27 ---A- . (.QLogic Corporation - QLogic iSCSI Storport Miniport Driver.) -- C:\Windows\System32\Drivers\ql40xx.sys [124008]
O58 - SDL:18/09/2008 - 11:50:30 ---A- . (.Realtek Semiconductor Corp. - Realtek(r) High Definition Audio Function Driver.) -- C:\Windows\System32\Drivers\RTKVHD64.sys [1497112]
O58 - SDL:05/06/2008 - 18:21:44 ---A- . (.Realtek Semiconductor Corp. - Realtek USB Mass Storage Driver for Vista x64.) -- C:\Windows\System32\Drivers\RTSTOR64.sys [66048]
O58 - SDL:30/09/2006 - 00:51:44 ---A- . (.Macrovision Corporation, Macrovision Europe - Macrovision SECURITY Driver.) -- C:\Windows\System32\Drivers\secdrv.sys [23040]
O58 - SDL:21/01/2008 - 03:47:26 ---A- . (.Silicon Integrated Systems - SiS AHCI Stor-Miniport Driver.) -- C:\Windows\System32\Drivers\sisraid4.sys [78392]
O58 - SDL:15/04/2015 - 08:38:25 ---A- . (...) -- C:\Windows\System32\Drivers\SPPD.sys [21976]
O58 - SDL:03/08/2013 - 07:31:41 ---A- . (.Duplex Secure Ltd. - SCSI Pass Through Direct Host.) -- C:\Windows\System32\Drivers\sptd.sys [564824]
O58 - SDL:20/03/2009 - 10:01:30 ---A- . (.MCCI - SAMSUNG USB Mobile Device.) -- C:\Windows\System32\Drivers\ss_bbus.sys [116224]
O58 - SDL:20/03/2009 - 10:01:30 ---A- . (.MCCI Corporation - Windows 2000/XP support functions.) -- C:\Windows\System32\Drivers\ss_bcm.sys [14848]
O58 - SDL:20/03/2009 - 10:01:30 ---A- . (.MCCI Corporation - Windows 2000/XP support functions.) -- C:\Windows\System32\Drivers\ss_bcmnt.sys [14848]
O58 - SDL:20/03/2009 - 10:01:30 ---A- . (.MCCI Corporation - SAMSUNG USB Mobile Modem Filter.) -- C:\Windows\System32\Drivers\ss_bmdfl.sys [18944]
O58 - SDL:20/03/2009 - 10:01:30 ---A- . (.MCCI Corporation - SAMSUNG USB Mobile Modem.) -- C:\Windows\System32\Drivers\ss_bmdm.sys [157696]
O58 - SDL:20/03/2009 - 10:01:30 ---A- . (.MCCI Corporation - SAMSUNG USB Mobile Device (Windows 2000/XP support functions).) -- C:\Windows\System32\Drivers\ss_bwh.sys [15872]
O58 - SDL:20/03/2009 - 10:01:30 ---A- . (.MCCI Corporation - SAMSUNG USB Mobile Device (Windows 2000/XP support functions).) -- C:\Windows\System32\Drivers\ss_bwhnt.sys [15872]
O58 - SDL:11/04/2009 - 06:39:31 ---A- . (...) -- C:\Windows\System32\Drivers\stream.sys [68224]
O58 - SDL:02/11/2006 - 13:02:52 ---A- . (.LSI Logic - LSI Logic 8XX SCSI Miniport Driver.) -- C:\Windows\System32\Drivers\symc8xx.sys [49256]
O58 - SDL:02/11/2006 - 13:02:37 ---A- . (.LSI Logic - LSI Logic Hi-Perf SCSI Miniport Driver.) -- C:\Windows\System32\Drivers\sym_hi.sys [44648]
O58 - SDL:02/11/2006 - 13:02:47 ---A- . (.LSI Logic - LSI Logic Ultra160 SCSI Miniport Driver.) -- C:\Windows\System32\Drivers\sym_u3.sys [48232]
O58 - SDL:03/08/2009 - 09:22:58 ---A- . (.Teruten Inc - File System Mini Filter Drvier.) -- C:\Windows\System32\Drivers\TFsExDisk.sys [16392]
O58 - SDL:30/01/2008 - 10:48:16 ---A- . (.NewTech Infosystems Corporation - NTI CDROM Filter Driver.) -- C:\Windows\System32\Drivers\UBHelper.sys [16384]
O58 - SDL:21/01/2008 - 03:46:56 ---A- . (.ULi Electronics Inc. - ULi SATA Controller Driver.) -- C:\Windows\System32\Drivers\uliahci.sys [284728]
O58 - SDL:02/11/2006 - 12:50:54 ---A- . (.Promise Technology, Inc. - Promise Ultra/Sata Series Driver for Win2003.) -- C:\Windows\System32\Drivers\ulsata.sys [148072]
O58 - SDL:21/01/2008 - 03:46:52 ---A- . (.Promise Technology, Inc. - Promise SATAII150 Series x64 Windows Driver.) -- C:\Windows\System32\Drivers\ulsata2.sys [174696]
O58 - SDL:11/04/2009 - 06:39:40 ---A- . (...) -- C:\Windows\System32\Drivers\USBCAMD2.sys [32640]
O58 - SDL:29/06/2013 - 03:25:14 ---A- . (...) -- C:\Windows\System32\Drivers\usbd.sys [7552]
O58 - SDL:21/01/2008 - 03:46:50 ---A- . (.VIA Technologies, Inc. - VIA Generic PCI IDE Bus Driver.) -- C:\Windows\System32\Drivers\viaide.sys [18024]
O58 - SDL:21/01/2008 - 03:47:25 ---A- . (.VIA Technologies Inc.,Ltd - VIA RAID DRIVER FOR AMD-X86-64.) -- C:\Windows\System32\Drivers\vsmraid.sys [149048]
O58 - SDL:02/11/2006 - 10:40:24 ---A- . (...) -- C:\Windows\System32\Drivers\wacompen.sys [26624]
O58 - SDL:08/04/2009 - 14:28:46 ---A- . (...) -- C:\Windows\System32\Drivers\xusb21.sys [68992]
O58 - SDL:04/02/2013 - 17:29:24 ---A- . (.GEAR Software Inc. - CD/DVD Class Filter Driver.) -- C:\Windows\SysWOW64\drivers\GEARAspiWDM.sys [15664]
O58 - SDL:15/09/2011 - 21:34:04 ---A- . (.Logix4u - hwinterface.sys.) -- C:\Windows\SysWOW64\drivers\hwinterface.sys [3026]
O58 - SDL:01/10/2008 - 10:04:16 ---A- . (.Acer, Inc. - int15.) -- C:\Windows\SysWOW64\drivers\int15.sys [12832]
O58 - SDL:30/09/2008 - 09:42:20 ---A- . (.Acer, Inc. - int15.) -- C:\Windows\SysWOW64\drivers\int15_64.sys [17952]
O58 - SDL:28/11/2006 - 20:46:22 ----- . (.Printing Communications Assoc., Inc. (PCAUS - PCAUSA NDIS 5.0 MPR Protocol Driver.) -- C:\Windows\SysWOW64\drivers\PCAMp50.sys [28224]
O58 - SDL:28/11/2006 - 20:46:20 ----- . (.Printing Communications Assoc., Inc. (PCAUS - PCAUSA NDIS 5.0 SPR Protocol Driver.) -- C:\Windows\SysWOW64\drivers\PCASp50.sys [27072]
O58 - SDL:25/10/2007 - 17:26:10 ---A- . (...) -- C:\Windows\SysWOW64\drivers\StarOpen.sys [5632]
O58 - SDL:03/08/2009 - 09:22:58 ---A- . (.Teruten Inc - File System Mini Filter Drvier.) -- C:\Windows\SysWOW64\drivers\TFsExDisk.Sys [16392]
~ Drivers: 106 Scanned in 00mn 01s



---\\ Derniers fichiers modifiés ou crées (Utilisateur) (O61)
O61 - LFC: 11/04/2015 - 20:09:27 ---A- . (.Internet Program.) -- C:\Users\betto\AppData\Local\Temp\ICReinstall_Minecraft.exe [703776] =>PUP.InternetProgram
O61 - LFC: 11/04/2015 - 20:09:28 ---A- . (...) -- C:\Users\betto\AppData\Roaming\OpenOffice.org\3\user\uno_packages\cache\stamp.sys [1]
O61 - LFC: 11/04/2015 - 20:09:28 ---A- . (...) -- C:\Users\betto\Downloads\Firefox Setup Stub 37.0.1.exe [243544]
O61 - LFC: 15/04/2015 - 20:09:27 ----- . (.Java(TM) Native Access (JNA).) -- C:\Users\betto\AppData\Local\Temp\jna\jna7693278747917209935.dll [441220]
O61 - LFC: 15/04/2015 - 20:09:27 ---A- . (...) -- C:\Users\betto\AppData\Local\65682200-1429090907-0920-0521-174701000000\Uninstall.exe [80516]
O61 - LFC: 15/04/2015 - 20:09:27 ---A- . (...) -- C:\Users\betto\AppData\Local\65682200-1429090907-0920-0521-174701000000\bnsgAB2D.exe [193024]
O61 - LFC: 15/04/2015 - 20:09:27 ---A- . (...) -- C:\Users\betto\AppData\Local\65682200-1429091993-0920-0521-174701000000\Uninstall.exe [101398]
O61 - LFC: 15/04/2015 - 20:09:27 ---A- . (...) -- C:\Users\betto\AppData\Local\65682200-1429091993-0920-0521-174701000000\jnsm3CC1.exe [326144]
O61 - LFC: 15/04/2015 - 20:09:27 ---A- . (...) -- C:\Users\betto\AppData\Local\65682200-1429091993-0920-0521-174701000000\rnsh3FAF.exe [57344]
O61 - LFC: 15/04/2015 - 20:09:27 ---A- . (...) -- C:\Users\betto\AppData\Local\Google\Chrome\User Data\ev_hashes_whitelist.bin [1113849]
O61 - LFC: 15/04/2015 - 20:09:27 ---A- . (...) -- C:\Users\betto\AppData\Local\Temp\BAEE5799-1165-8499-572E-9FD9DEC3FC74.exe [1014272]
O61 - LFC: 15/04/2015 - 20:09:27 ---A- . (...) -- C:\Users\betto\AppData\Local\Temp\D5897839-8854-E150-B917-2997BAC68F02.dll [89088]
O61 - LFC: 15/04/2015 - 20:09:27 ---A- . (...) -- C:\Users\betto\AppData\Local\Temp\D5897839-8854-E150-B917-2997BAC68F02.exe [849920]
O61 - LFC: 15/04/2015 - 20:09:27 ---A- . (...) -- C:\Users\betto\AppData\Local\Temp\NVIDIA Corporation\NV_Cache\26b5dc9e48691a8035dafb2b7ed76562_fce8395f8fd8a848_15f74c7777689be5_2_0.bin [16384]
O61 - LFC: 15/04/2015 - 20:09:27 ---A- . (...) -- C:\Users\betto\AppData\Local\Temp\NVIDIA Corporation\NV_Cache\26b5dc9e48691a8035dafb2b7ed76562_fce8395f8fd8a848_15f74c7777689be5_3_0.bin [16384]
O61 - LFC: 15/04/2015 - 20:09:27 ---A- . (...) -- C:\Users\betto\AppData\Local\Temp\app2951\Of_FR-I3-Wajam_chk_0_245.exe [2356632] =>PUP.Wajam
O61 - LFC: 15/04/2015 - 20:09:27 ---A- . (...) -- C:\Users\betto\AppData\Local\Temp\bitool.dll [59904]
O61 - LFC: 15/04/2015 - 20:09:27 ---A- . (...) -- C:\Users\betto\AppData\Local\Temp\f9626892-7a78-3199-abd2-97bbce96297b\OfferInstaller.exe [305664]
O61 - LFC: 15/04/2015 - 20:09:27 ---A- . (...) -- C:\Users\betto\AppData\Local\Temp\jue1330.exe [2998272]
O61 - LFC: 15/04/2015 - 20:09:27 ---A- . (...) -- C:\Users\betto\AppData\Local\Temp\nseA489.tmp\GetVersion.dll [6656]
O61 - LFC: 15/04/2015 - 20:09:27 ---A- . (...) -- C:\Users\betto\AppData\Local\Temp\nseA489.tmp\Math.dll [67584]
O61 - LFC: 15/04/2015 - 20:09:27 ---A- . (...) -- C:\Users\betto\AppData\Local\Temp\nseA489.tmp\System.dll [11264]
O61 - LFC: 15/04/2015 - 20:09:27 ---A- . (...) -- C:\Users\betto\AppData\Local\Temp\nseA489.tmp\UserInfo.dll [4096]
O61 - LFC: 15/04/2015 - 20:09:27 ---A- . (...) -- C:\Users\betto\AppData\Local\Temp\nseA489.tmp\blowfish.dll [22528]
O61 - LFC: 15/04/2015 - 20:09:27 ---A- . (...) -- C:\Users\betto\AppData\Local\Temp\nseA489.tmp\manlib.dll [26112]
O61 - LFC: 15/04/2015 - 20:09:27 ---A- . (...) -- C:\Users\betto\AppData\Local\Temp\nseA489.tmp\nsDialogs.dll [9728]
O61 - LFC: 15/04/2015 - 20:09:27 ---A- . (...) -- C:\Users\betto\AppData\Local\Temp\nseA489.tmp\nsWeb_DispOffr.dll [69120]
O61 - LFC: 15/04/2015 - 20:09:27 ---A- . (...) -- C:\Users\betto\AppData\Local\Temp\nseA489.tmp\nsisunz.dll [40960]
O61 - LFC: 15/04/2015 - 20:09:27 ---A- . (...) -- C:\Users\betto\AppData\Local\Temp\nseA489.tmp\registry.dll [25088]
O61 - LFC: 15/04/2015 - 20:09:27 ---A- . (...) -- C:\Users\betto\AppData\Local\Temp\nseA489.tmp\serlib.dll [16384]
O61 - LFC: 15/04/2015 - 20:09:27 ---A- . (...) -- C:\Users\betto\AppData\Local\Temp\nsr1797.tmp\System.dll [11264]
O61 - LFC: 15/04/2015 - 20:09:27 ---A- . (...) -- C:\Users\betto\AppData\Local\Temp\nsr1797.tmp\WmiInspector.dll [106496]
O61 - LFC: 15/04/2015 - 20:09:27 ---A- . (...) -- C:\Users\betto\AppData\Local\Temp\nsr1797.tmp\inetc.dll [20992]
O61 - LFC: 15/04/2015 - 20:09:27 ---A- . (.ClientConnect.) -- C:\Users\betto\AppData\Local\Temp\app2951\Of_FR-I3-SearchProtect2_chk_0_239.exe [151256] =>PUP.SearchProtect
O61 - LFC: 15/04/2015 - 20:09:27 ---A- . (.PC Utilities Software Limited.) -- C:\Users\betto\AppData\Local\Temp\app2951\Of_FR-I3-OptimizerPro_chk_0_237.exe [6543312] =>PUP.OptimizerPro
O61 - LFC: 15/04/2015 - 20:09:27 ---A- . (.VuPC.) -- C:\Users\betto\AppData\Local\Temp\app2951\Of_FR-I3-Vuupc_chk_0_244.exe [362855] =>PUP.VuuPC
O61 - LFC: 15/04/2015 - 20:09:27 ---A- . (.globalUpdate.) -- C:\Users\betto\AppData\Local\Temp\comh.318006\GoogleCrashHandler.exe [72872] =>PUP.GlobalUpdate
O61 - LFC: 15/04/2015 - 20:09:27 ---A- . (.globalUpdate.) -- C:\Users\betto\AppData\Local\Temp\comh.318006\GoogleUpdate.exe [68608] =>PUP.GlobalUpdate
O61 - LFC: 15/04/2015 - 20:09:27 ---A- . (.globalUpdate.) -- C:\Users\betto\AppData\Local\Temp\comh.318006\GoogleUpdateBroker.exe [46080] =>PUP.GlobalUpdate
O61 - LFC: 15/04/2015 - 20:09:27 ---A- . (.globalUpdate.) -- C:\Users\betto\AppData\Local\Temp\comh.318006\GoogleUpdateOnDemand.exe [46080] =>PUP.GlobalUpdate
O61 - LFC: 15/04/2015 - 20:09:27 ---A- . (.globalUpdate.) -- C:\Users\betto\AppData\Local\Temp\comh.318006\goopdate.dll [761856] =>PUP.GlobalUpdate
O61 - LFC: 15/04/2015 - 20:09:27 ---A- . (.globalUpdate.) -- C:\Users\betto\AppData\Local\Temp\comh.318006\goopdateres_en.dll [26792] =>PUP.GlobalUpdate
O61 - LFC: 15/04/2015 - 20:09:27 ---A- . (.globalUpdate.) -- C:\Users\betto\AppData\Local\Temp\comh.318006\npGoogleUpdate4.dll [220672] =>PUP.GlobalUpdate
O61 - LFC: 15/04/2015 - 20:09:27 ---A- . (.globalUpdate.) -- C:\Users\betto\AppData\Local\Temp\comh.318006\psmachine.dll [155648] =>PUP.GlobalUpdate
O61 - LFC: 15/04/2015 - 20:09:27 ---A- . (.globalUpdate.) -- C:\Users\betto\AppData\Local\Temp\comh.318006\psuser.dll [155648] =>PUP.GlobalUpdate
O61 - LFC: 15/04/2015 - 20:09:28 ---A- . (...) -- C:\Users\betto\AppData\Local\Temp\setup_608.exe [152160]
O61 - LFC: 15/04/2015 - 20:09:28 ---A- . (...) -- C:\Users\betto\AppData\Roaming\NVIDIA\GLCache\3a784e388e99b593a2f176d80899e1c9\b51836fb308e266e\82bd674ac494837f.bin [43235]
O61 - LFC: 15/04/2015 - 20:09:28 ---A- . (...) -- C:\Users\betto\AppData\Roaming\VOPackage\Uninstall.exe [119980] =>Adware.Downware
O61 - LFC: 15/04/2015 - 20:09:28 ---A- . (...) -- C:\Users\betto\AppData\Roaming\VOPackage\VOsrv.exe [142848] =>Adware.Downware
O61 - LFC: 15/04/2015 - 20:09:28 ---A- . (...) -- C:\Users\betto\AppData\Roaming\VOPackage\runasu.exe [57344] =>Adware.Downware
O61 - LFC: 15/04/2015 - 20:09:28 ---A- . (...) -- C:\Users\betto\AppData\Roaming\systweak\regclean pro\Version 6.1\backup3.bin [610] =>Rogue.RegistryPowerCleaner
O61 - LFC: 15/04/2015 - 20:09:28 ---A- . (...) -- C:\Users\betto\AppData\Roaming\systweak\regclean pro\Version 6.1\backup4.bin [717] =>Rogue.RegistryPowerCleaner
O61 - LFC: 15/04/2015 - 20:09:28 ---A- . (...) -- C:\Users\betto\AppData\Roaming\systweak\regclean pro\Version 6.1\backup6.bin [523] =>Rogue.RegistryPowerCleaner
O61 - LFC: 15/04/2015 - 20:09:28 ---A- . (...) -- C:\Users\betto\Downloads\Firefox Setup Stub 37.0.1 (1).exe [243544]
O61 - LFC: 15/04/2015 - 20:09:28 ---A- . (.Cinema PlusV14.04.) -- C:\Users\betto\AppData\Roaming\ACXWGNVQ.exe [1858048] =>PUP.CrossRider
O61 - LFC: 15/04/2015 - 20:09:28 ---A- . (.Nicolas Coolman.) -- C:\Users\betto\Desktop\ZHPDiag2.exe [6879990] =>.Nicolas Coolman
O61 - LFC: 15/04/2015 - 20:09:28 ---A- . (.PCUtilities Software Limited.) -- C:\Users\betto\AppData\Local\Temp\optprosetup.exe [6282720]
O61 - LFC: 15/04/2015 - 20:09:28 ---A- . (.SysTool PasSame LIMITED.) -- C:\Users\betto\AppData\Local\Temp\tmp-RunningMan\tmp\wpm_v20.0.0.1953_0302.exe [493712] =>PUP.WpManager
~ 335 Fichiers temporaires (Temporary files)
~ 68 Fichiers cookies (Cookies files)
~ Files: 58 Scanned in 00mn 20s



---\\ Liste des outils de désinfection (LATC) (O63)
O63 - Logiciel: ZHPDiag 2015 - (.Nicolas Coolman.) [HKLM] -- ZHPDiag_is1 =>.Nicolas Coolman
~ ADS: Scanned in 00mn 00s



---\\ Liste les services legacy du registre (LALS) (O64)
O64 - Services: CurCS - 19/01/2009 - C:\Windows\system32\drivers\acedrv11.sys (acedrv11) .(.Protect Software GmbH - ProtectDisc x64/x86 Hybrid Driver.) - LEGACY_ACEDRV11
O64 - Services: CurCS - 24/04/2010 - C:\Windows\System32\DRIVERS\atksgt.sys (atksgt) .(...) - LEGACY_ATKSGT
O64 - Services: CurCS - 10/04/2015 - C:\Windows\System32\drivers\innfd_1_10_0_14.sys (innfd_1_10_0_14) .(.Infonaut - Infonaut Driver x64.) - LEGACY_INNFD_1_10_0_14 =>PUP.Infonaut
O64 - Services: CurCS - 30/09/2008 - C:\Windows\sysWOW64\drivers\int15_64.sys (int15) .(.Acer, Inc. - int15.) - LEGACY_INT15
O64 - Services: CurCS - 10/02/2009 - C:\Program Files (x86)\UltraISO\drivers\ISODrv64.sys (ISODrive) .(.EZB Systems, Inc. - ISO DVD/CD-ROM Device Driver.) - LEGACY_ISODRIVE
O64 - Services: CurCS - 24/04/2010 - C:\Windows\System32\DRIVERS\lirsgt.sys (lirsgt) .(...) - LEGACY_LIRSGT
O64 - Services: CurCS - 09/12/1745 - C:\ProgramData\Microsoft\Microsoft Antimalware\Definition Updates\{493B5A6C-92CD-498D-A8FF-A0F27B3C41A2}\MpKsl029ce939.sys (MpKsl029ce939) .(...) - LEGACY_MPKSL029CE939
O64 - Services: CurCS - 11/02/2011 - C:\Windows\System32\drivers\npf.sys (npf) .(.CACE Technologies, Inc. - npf.sys (NT5/6 AMD64) Kernel Driver.) - LEGACY_NPF
O64 - Services: CurCS - 29/07/2008 - C:\Windows\System32\DRIVERS\psdfilter.sys (PSDFilter) .(.Egis Incorporated - Acer eDataSecurity Management PSD Filter Dr.) - LEGACY_PSDFILTER
O64 - Services: CurCS - 29/07/2008 - C:\Windows\System32\DRIVERS\PSDNServ.sys (PSDNServ) .(.Egis Incorporated - Acer eDataSecurity Management PSD Named Pip.) - LEGACY_PSDNSERV
O64 - Services: CurCS - 29/07/2008 - C:\Windows\System32\DRIVERS\PSDVdisk.sys (psdvdisk) .(.Egis Incorporated - Acer eDataSecurity Management PSD Virtual D.) - LEGACY_PSDVDISK
O64 - Services: CurCS - 30/09/2006 - C:\Windows\System32\Drivers\secdrv.sys (secdrv) .(.Macrovision Corporation, Macrovision Europe - Macrovision SECURITY Driver.) - LEGACY_SECDRV
O64 - Services: CurCS - 03/08/2013 - C:\Windows\system32\Drivers\sptd.sys (sptd) .(.Duplex Secure Ltd. - SCSI Pass Through Direct Host.) - LEGACY_SPTD
O64 - Services: CurCS - 01/07/2010 - C:\Program Files\Unlocker\UnlockerDriver5.sys (UnlockerDriver5) .(...) - LEGACY_UNLOCKERDRIVER5
~ Legacy: 99 Scanned in 00mn 00s



---\\ Associations Shell Spawning (O67)
O67 - Shell Spawning: <.bat> [HKLM\..\open\Command] (...) -- "%1" %*
O67 - Shell Spawning: <.cpl> [HKLM\..\cplopen\Command] (.Microsoft Corporation - Windows Control Panel.) -- C:\Windows\System32\control.exe =>.Microsoft Corporation
O67 - Shell Spawning: <.cmd> [HKLM\..\open\Command] (...) -- "%1" %*
O67 - Shell Spawning: <.com> [HKLM\..\open\Command] (...) -- "%1" %*
O67 - Shell Spawning: <.evt> [HKLM\..\open\Command] (.Microsoft Corporation - Lanceur du composant logiciel enfichable Observateur d'événements.) -- C:\Windows\System32\eventvwr.exe
O67 - Shell Spawning: <.exe> [HKLM\..\open\Command] (...) -- "%1" %*
O67 - Shell Spawning: <.html> [HKLM\..\open\Command] (.Google Inc. - Google Chrome.) -- C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
O67 - Shell Spawning: <.js> [HKLM\..\open\Command] (.Microsoft Corporation - Microsoft (R) Windows Based Script Host.) -- C:\Windows\System32\WScript.exe
O67 - Shell Spawning: <.reg> [HKLM\..\open\Command] (.Microsoft Corporation - Éditeur du Registre.) -- C:\Windows\regedit.exe
O67 - Shell Spawning: <.scr> [HKLM\..\open\Command] (...) -- "%1" /S
O67 - Shell Spawning: <.html> [HKCU\..\open\Command] (.Mozilla Corporation - Firefox.) -- C:\Program Files (x86)\Mozilla Firefox\firefox.exe
~ FASS Keys: 11 Scanned in 00mn 00s



---\\ Menu de démarrage Internet (SMI) (O68)
O68 - StartMenuInternet: [HKLM\..\Shell\open\Command] (.Microsoft Corporation - Internet Explorer.) -- C:\Program Files (x86)\Internet Explorer\iexplore.exe
~ Keys: Scanned in 00mn 00s



---\\ Recherche d'infection sur les navigateurs internet (SBI) (O69)
O69 - SBI: prefs.js [betto - 9zgyi6yv.default] user_pref("extensions.crossrider.bic", "14cbc1892b7f1ce24ac4ca0cc4700eff"); =>PUP.CrossRider
O69 - SBI: SearchScopes [HKCU] {015DB5FA-EAFB-4592-A95B-F44D3EE87FA9} - (Trovi) - http://www.luckysearches.com =>Hijacker.LuckySearches
O69 - SBI: SearchScopes [HKCU] {0633EE93-D776-472f-A0FF-E1416B8B2E3A} [DefaultScope] - (Bing) - http://www.luckysearches.com =>Hijacker.LuckySearches
O69 - SBI: SearchScopes [HKCU] {2023ECEC-E06A-4372-A1C7-0B49F9E0FFF0} - (e) - http://www.luckysearches.com =>Hijacker.LuckySearches
O69 - SBI: SearchScopes [HKCU] {E733165D-CBCF-4FDA-883E-ADEF965B476C} - (Google) - http://www.luckysearches.com =>Hijacker.LuckySearches
~ Keys: Scanned in 00mn 00s



---\\ Enumère les fichiers Crack & Keygen (CKF) (O82)
C:\Program Files (x86)\Red.Faction.Armageddon.STEAMCRACKED-P2P\build\pc\cache\langs.dat =>.Crack,Keygen
C:\Program Files (x86)\Red.Faction.Armageddon.STEAMCRACKED-P2P\DirectX\DXSETUP.exe =>.Crack,Keygen
C:\Program Files (x86)\Red.Faction.Armageddon.STEAMCRACKED-P2P\Red.Faction.Armageddon.Crack.Patch.By.Ali213.rar =>.Crack,Keygen
C:\Program Files (x86)\Red.Faction.Armageddon.STEAMCRACKED-P2P\RedFactionArmageddon.exe =>.Crack,Keygen
C:\Program Files (x86)\Red.Faction.Armageddon.STEAMCRACKED-P2P\RedFactionArmageddon_DX11.exe =>.Crack,Keygen
C:\Program Files (x86)\Red.Faction.Armageddon.STEAMCRACKED-P2P\rf4_launcher.exe =>.Crack,Keygen
C:\Program Files (x86)\Red.Faction.Armageddon.STEAMCRACKED-P2P\vcredist_x86.exe =>.Crack,Keygen
C:\Users\betto\APRES FORMATAGE\FlashFXP.v3.6.0.1240.Multilingual.Patch.and.Keymaker-ACME\FFXP36_Keygen.exe =>.Crack,Keygen
C:\Users\betto\Desktop\JEUX\Pid.CRACKED-P2P\Pid.exe =>.Crack,Keygen
C:\Users\betto\Desktop\JEUX\Pid.CRACKED-P2P\unins000.dat =>.Crack,Keygen
C:\Users\betto\Desktop\JEUX\Pid.CRACKED-P2P\unins000.exe =>.Crack,Keygen
C:\Program Files (x86)\Red.Faction.Armageddon.STEAMCRACKED-P2P\build\pc\cache\langs.dat =>.Crack,Keygen
C:\Program Files (x86)\Red.Faction.Armageddon.STEAMCRACKED-P2P\DirectX\DXSETUP.exe =>.Crack,Keygen
C:\Program Files (x86)\Red.Faction.Armageddon.STEAMCRACKED-P2P\Red.Faction.Armageddon.Crack.Patch.By.Ali213.rar =>.Crack,Keygen
C:\Program Files (x86)\Red.Faction.Armageddon.STEAMCRACKED-P2P\RedFactionArmageddon.exe =>.Crack,Keygen
C:\Program Files (x86)\Red.Faction.Armageddon.STEAMCRACKED-P2P\RedFactionArmageddon_DX11.exe =>.Crack,Keygen
C:\Program Files (x86)\Red.Faction.Armageddon.STEAMCRACKED-P2P\rf4_launcher.exe =>.Crack,Keygen
C:\Program Files (x86)\Red.Faction.Armageddon.STEAMCRACKED-P2P\vcredist_x86.exe =>.Crack,Keygen
C:\Users\betto\APRES FORMATAGE\FlashFXP.v3.6.0.1240.Multilingual.Patch.and.Keymaker-ACME\FFXP36_Keygen.exe =>.Crack,Keygen
C:\Users\betto\Desktop\JEUX\Pid.CRACKED-P2P\Pid.exe =>.Crack,Keygen
C:\Users\betto\Desktop\JEUX\Pid.CRACKED-P2P\unins000.dat =>.Crack,Keygen
C:\Users\betto\Desktop\JEUX\Pid.CRACKED-P2P\unins000.exe =>.Crack,Keygen
~ Files: Scanned in 01mn 12s



---\\ Enumère les service demarrés par Svchost (SSS) (O83)
O83 - Search Svchost Services: AeLookupSvc (AeLookupSvc) . (.Microsoft Corporation - Service Expérience d’application.) -- C:\Windows\System32\aelupsvc.dll [26624]
O83 - Search Svchost Services: wercplsupport (wercplsupport) . (.Microsoft Corporation - Rapports et solutions aux problèmes.) -- C:\Windows\System32\wercplsupport.dll [85504]
O83 - Search Svchost Services: Themes (Themes) . (.Microsoft Corporation - Dll des services Windows Shell.) -- C:\Windows\System32\shsvcs.dll [302080]
O83 - Search Svchost Services: CertPropSvc (CertPropSvc) . (.Microsoft Corporation - Service de propagation de certificats de cartes à puce Microsoft.) -- C:\Windows\System32\certprop.dll [49664]
O83 - Search Svchost Services: SCPolicySvc (SCPolicySvc) . (.Microsoft Corporation - Service de propagation de certificats de cartes à puce Microsoft.) -- C:\Windows\System32\certprop.dll [49664]
O83 - Search Svchost Services: lanmanserver (lanmanserver) . (.Microsoft Corporation - DLL du service Serveur.) -- C:\Windows\System32\srvsvc.dll [179712]
O83 - Search Svchost Services: gpsvc (gpsvc) . (.Microsoft Corporation - Client de stratégie de groupe.) -- C:\Windows\System32\gpsvc.dll [719360]
O83 - Search Svchost Services: IKEEXT (IKEEXT) . (.Microsoft Corporation - Extension IKE.) -- C:\Windows\System32\ikeext.dll [454656]
O83 - Search Svchost Services: AudioSrv (AudioSrv) . (.Microsoft Corporation - Service Audio Windows.) -- C:\Windows\System32\Audiosrv.dll [446976]
O83 - Search Svchost Services: Rasauto (Rasauto) . (.Microsoft Corporation - Gestionnaire de numérotation automatique d’accès distant.) -- C:\Windows\System32\rasauto.dll [98304]
O83 - Search Svchost Services: Rasman (Rasman) . (.Microsoft Corporation - Gestionnaire de connexions d'accès distant.) -- C:\Windows\System32\rasmans.dll [309760]
O83 - Search Svchost Services: Remoteaccess (Remoteaccess) . (.Microsoft Corporation - Gestionnaire d’interface dynamique.) -- C:\Windows\System32\mprdim.dll [88064]
O83 - Search Svchost Services: SENS (SENS) . (.Microsoft Corporation - Service de notification d’événements système (SENS).) -- C:\Windows\System32\sens.dll [61952]
O83 - Search Svchost Services: Sharedaccess (Sharedaccess) . (.Microsoft Corporation - Composants de l'application d'assistance à Microsoft NAT.) -- C:\Windows\System32\ipnathlp.dll [342016]
O83 - Search Svchost Services: Tapisrv (Tapisrv) . (.Microsoft Corporation - Serveur de téléphonie Microsoft® Windows(TM).) -- C:\Windows\System32\tapisrv.dll [318976]
O83 - Search Svchost Services: TermService (TermService) . (.Microsoft Corporation - Gestionnaire des connexions distantes Terminal Server.) -- C:\Windows\System32\termsrv.dll [548352]
O83 - Search Svchost Services: wuauserv (wuauserv) . (.Microsoft Corporation - Agent de mise à jour automatique Windows Update.) -- C:\Windows\System32\wuaueng.dll [2428952]
O83 - Search Svchost Services: BITS (BITS) . (.Microsoft Corporation - Service de transfert intelligent en arrière-plan.) -- C:\Windows\System32\qmgr.dll [1081856]
O83 - Search Svchost Services: ShellHWDetection (ShellHWDetection) . (.Microsoft Corporation - Dll des services Windows Shell.) -- C:\Windows\System32\shsvcs.dll [302080]
O83 - Search Svchost Services: seclogon (seclogon) . (.Microsoft Corporation - DLL de service d'ouverture de session secondaire.) -- C:\Windows\system32\seclogon.dll [28672]
O83 - Search Svchost Services: AppInfo (AppInfo) . (.Microsoft Corporation - Service Informations d’application.) -- C:\Windows\System32\appinfo.dll [45056]
O83 - Search Svchost Services: msiscsi (msiscsi) . (.Microsoft Corporation - Service de découverte iSCSI.) -- C:\Windows\System32\iscsiexe.dll [154112]
O83 - Search Svchost Services: MMCSS (MMCSS) . (.Microsoft Corporation - Service Planificateur de classes multimédias.) -- C:\Windows\System32\mmcss.dll [37888]
O83 - Search Svchost Services: hkmsvc (hkmsvc) . (.Microsoft Corporation - Service Gestion des clés.) -- C:\Windows\System32\kmsvc.dll [86528]
O83 - Search Svchost Services: EapHost (EapHost) . (.Microsoft Corporation - Service EAPHost Microsoft.) -- C:\Windows\System32\eapsvc.dll [74752]
O83 - Search Svchost Services: schedule (schedule) . (.Microsoft Corporation - Service du Planificateur de tâches.) -- C:\Windows\System32\schedsvc.dll [855040]
O83 - Search Svchost Services: winmgmt (winmgmt) . (.Microsoft Corporation - WMI.) -- C:\Windows\System32\wbem\WMIsvc.dll [221696]
O83 - Search Svchost Services: SessionEnv (SessionEnv) . (.Microsoft Corporation - Service de configuration des services Terminal Server.) -- C:\Windows\System32\sessenv.dll [74752]
O83 - Search Svchost Services: browser (browser) . (.Microsoft Corporation - DLL du service Explorateur d’ordinateurs.) -- C:\Windows\System32\browser.dll [103424]
O83 - Search Svchost Services: ProfSvc (ProfSvc) . (.Microsoft Corporation - ProfSvc.) -- C:\Windows\System32\profsvc.dll [178688]
~ Services: 30 Scanned in 00mn 00s



---\\ Recherche particulière à la racine du système (SPRF) (O84)
[MD5.994627FB684635C1B2830016748846A7] [SPRF][15/04/2015] (.Cinema PlusV14.04 - Cinema PlusV14.04 exe.) -- C:\Users\betto\AppData\Roaming\ACXWGNVQ.exe [1858048] =>PUP.CrossRider
[MD5.0F86155EC80FC5B384E6289533D1CDD6] [SPRF][20/01/2015] (...) -- C:\Users\betto\AppData\Roaming\wklnhst.dat [630]
[MD5.43860F92000D216C80D3B949D5930C5C] [SPRF][15/04/2015] (.Nicolas Coolman - ZHPDiag Setup.) -- C:\Users\betto\Desktop\ZHPDiag2.exe [6879990]
[MD5.3FEA9D2EDF23B0283C7A66C8DEA380BD] [SPRF][16/05/2006] (.InstallShield Software Corporation - InstallShield Update Service Setup Player Module.) -- C:\Windows\Downloaded Program Files\dwusplay.dll [24576]
[MD5.CDBE35EA59BC9223E4F800BD1DB82D27] [SPRF][16/05/2006] (.InstallShield Software Corporation - InstallShield Update Service Setup Player.) -- C:\Windows\Downloaded Program Files\dwusplay.exe [196608]
[MD5.1245E33C050E61191059EAA33D9CE6C9] [SPRF][16/05/2006] (.Macrovision Corporation - InstallShield Update Service Web Agent.) -- C:\Windows\Downloaded Program Files\isusweb.dll [484272]
~ Files: 6 Scanned in 00mn 00s



---\\ Liste des exceptions du parefeu (FirewallRules) (O87)
O87 - FAEL: "{C02DDDBA-AB39-480D-BBE1-3F954CA58457}" | In - Public - P6 - TRUE | .(.BitTorrent Inc. - µTorrent.) -- C:\Program Files (x86)\uTorrent\uTorrent.exe =>P2P.BitTorrent
O87 - FAEL: "{3FC0A8AB-FBD1-4950-A9B3-28D206D60C72}" | In - Public - P17 - TRUE | .(.BitTorrent Inc. - µTorrent.) -- C:\Program Files (x86)\uTorrent\uTorrent.exe =>P2P.BitTorrent
O87 - FAEL: "TCP Query User{E080F2AA-4F0C-4A04-ACE1-4D4E8BA9D344}C:\program files (x86)\utorrent\utorrent.exe" | In - Private - P6 - TRUE | .(.BitTorrent Inc. - µTorrent.) -- C:\program files (x86)\utorrent\utorrent.exe =>P2P.BitTorrent
O87 - FAEL: "UDP Query User{41DD2E4B-0A58-4B72-BB0E-B6131F4D1FA3}C:\program files (x86)\utorrent\utorrent.exe" | In - Private - P17 - TRUE | .(.BitTorrent Inc. - µTorrent.) -- C:\program files (x86)\utorrent\utorrent.exe =>P2P.BitTorrent
~ Firewall: 4 Scanned in 00mn 05s



---\\ Export de clés de registre aléatoires (O91)
[HKLM\Software\Wow6432Node\ea30e8eb-2ca4-474b-0194-b4395eed20e4\27918871534310610\eae10f9d]:060df2cd="alAl/YP/b/Af/X6/bxAu/Y//alAf/YP/HPAj/Xb/UxAp/X2/GxAk////"
[HKLM\Software\Wow6432Node\ea30e8eb-2ca4-474b-0194-b4395eed20e4\27918871534310610\eae10f9d]:0c230bcb="///%"
[HKLM\Software\Wow6432Node\ea30e8eb-2ca4-474b-0194-b4395eed20e4\27918871534310610\eae10f9d]:0dc3ee96="/P////%%"
[HKLM\Software\Wow6432Node\ea30e8eb-2ca4-474b-0194-b4395eed20e4\27918871534310610\eae10f9d]:0e93c3f3="///%"
[HKLM\Software\Wow6432Node\ea30e8eb-2ca4-474b-0194-b4395eed20e4\27918871534310610\eae10f9d]:1520c6f1="V/////%%"
[HKLM\Software\Wow6432Node\ea30e8eb-2ca4-474b-0194-b4395eed20e4\27918871534310610\eae10f9d]:1c311243="b/Af/X6/alAl/YP/HPAi/Yq/GPAf/Yb/GPAz/B2/FlAk/Xh////%"
[HKLM\Software\Wow6432Node\ea30e8eb-2ca4-474b-0194-b4395eed20e4\27918871534310610\eae10f9d]:27ddcf6f="///%"
[HKLM\Software\Wow6432Node\ea30e8eb-2ca4-474b-0194-b4395eed20e4\27918871534310610\eae10f9d]:2d71d5ab="V/////%%"
[HKLM\Software\Wow6432Node\ea30e8eb-2ca4-474b-0194-b4395eed20e4\27918871534310610\eae10f9d]:2e22d94e="///%"
[HKLM\Software\Wow6432Node\ea30e8eb-2ca4-474b-0194-b4395eed20e4\27918871534310610\eae10f9d]:340d3099="/P////%%"
[HKLM\Software\Wow6432Node\ea30e8eb-2ca4-474b-0194-b4395eed20e4\27918871534310610\eae10f9d]:37b7a6d8="UlAr/XJ/c//k////"
[HKLM\Software\Wow6432Node\ea30e8eb-2ca4-474b-0194-b4395eed20e4\27918871534310610\eae10f9d]:38583bc3="Ml/2/CF/M//g/CZ////%"
[HKLM\Software\Wow6432Node\ea30e8eb-2ca4-474b-0194-b4395eed20e4\27918871534310610\eae10f9d]:3c09c42b="///%"
[HKLM\Software\Wow6432Node\ea30e8eb-2ca4-474b-0194-b4395eed20e4\27918871534310610\eae10f9d]:414bc593="///%"
[HKLM\Software\Wow6432Node\ea30e8eb-2ca4-474b-0194-b4395eed20e4\27918871534310610\eae10f9d]:48bd1aff="V/////%%"
[HKLM\Software\Wow6432Node\ea30e8eb-2ca4-474b-0194-b4395eed20e4\27918871534310610\eae10f9d]:51d2f2ea="IlAl/YP/HPAi/Xt/dxAu/YZ/J/Af/X6/Z/AM/X6/axAp/YP/alAf/Xt/axAr/B//VP/j/Cx/V//j/C
[HKLM\Software\Wow6432Node\ea30e8eb-2ca4-474b-0194-b4395eed20e4\27918871534310610\eae10f9d]:587b5709="V/////%%"
[HKLM\Software\Wow6432Node\ea30e8eb-2ca4-474b-0194-b4395eed20e4\27918871534310610\eae10f9d]:6185d035="VP/h/CP/V//l////"
[HKLM\Software\Wow6432Node\ea30e8eb-2ca4-474b-0194-b4395eed20e4\27918871534310610\eae10f9d]:65114b36="VP/+////"
[HKLM\Software\Wow6432Node\ea30e8eb-2ca4-474b-0194-b4395eed20e4\27918871534310610\eae10f9d]:72758a5d="///%"
[HKLM\Software\Wow6432Node\ea30e8eb-2ca4-474b-0194-b4395eed20e4\27918871534310610\eae10f9d]:7367429f="///%"
[HKLM\Software\Wow6432Node\ea30e8eb-2ca4-474b-0194-b4395eed20e4\27918871534310610\eae10f9d]:7f69fa1f="///%"
[HKLM\Software\Wow6432Node\ea30e8eb-2ca4-474b-0194-b4395eed20e4\27918871534310610\eae10f9d]:8b9e4cbc="V/////%%"
[HKLM\Software\Wow6432Node\ea30e8eb-2ca4-474b-0194-b4395eed20e4\27918871534310610\eae10f9d]:a0743acc="N/////%%"
[HKLM\Software\Wow6432Node\ea30e8eb-2ca4-474b-0194-b4395eed20e4\27918871534310610\eae10f9d]:a1dcff5b="V/////%%"
[HKLM\Software\Wow6432Node\ea30e8eb-2ca4-474b-0194-b4395eed20e4\27918871534310610\eae10f9d]:a2e3b941="///%"
[HKLM\Software\Wow6432Node\ea30e8eb-2ca4-474b-0194-b4395eed20e4\27918871534310610\eae10f9d]:bbf88800="///%"
[HKLM\Software\Wow6432Node\ea30e8eb-2ca4-474b-0194-b4395eed20e4\27918871534310610\eae10f9d]:c24899a6="VP/g/CV/Vl/1/CF////%"
[HKLM\Software\Wow6432Node\ea30e8eb-2ca4-474b-0194-b4395eed20e4\27918871534310610\eae10f9d]:c5705860="Vx////%%"
[HKLM\Software\Wow6432Node\ea30e8eb-2ca4-474b-0194-b4395eed20e4\27918871534310610\eae10f9d]:c6c5dd44="V/////%%"
[HKLM\Software\Wow6432Node\ea30e8eb-2ca4-474b-0194-b4395eed20e4\27918871534310610\eae10f9d]:c99a5f5c="///%"
[HKLM\Software\Wow6432Node\ea30e8eb-2ca4-474b-0194-b4395eed20e4\27918871534310610\eae10f9d]:d1abcdb6="///%"
[HKLM\Software\Wow6432Node\ea30e8eb-2ca4-474b-0194-b4395eed20e4\27918871534310610\eae10f9d]:d94388d2="b/Af/X6/alAl/YP/HPAi/Yq/GPAf/Yb/GPAz/B2/FlAk/Xh////%"
[HKLM\Software\Wow6432Node\ea30e8eb-2ca4-474b-0194-b4395eed20e4\27918871534310610\eae10f9d]:e46c271e="///%"
[HKLM\Software\Wow6432Node\ea30e8eb-2ca4-474b-0194-b4395eed20e4\27918871534310610\eae10f9d]:e8f9dcc7="UlAr/XJ/c//k////"
[HKLM\Software\Wow6432Node\ea30e8eb-2ca4-474b-0194-b4395eed20e4\27918871534310610\eae10f9d]:f0bf0bde="///%"
[HKLM\Software\Wow6432Node\ea30e8eb-2ca4-474b-0194-b4395eed20e4\27918871534310610\eae10f9d]:f1f24e29="Vl/l/C/////%"
[HKLM\Software\Wow6432Node\ea30e8eb-2ca4-474b-0194-b4395eed20e4\27918871534310610\eae10f9d]:f2c53c49="UlAr/XJ/c//k////"
[HKLM\Software\Wow6432Node\ea30e8eb-2ca4-474b-0194-b4395eed20e4\27918871534310610\eae10f9d]:f6ad6fa6="V/////%%"
[HKLM\Software\Wow6432Node\ea30e8eb-2ca4-474b-0194-b4395eed20e4\27918871534310610\eae10f9d]:fe94ce1e="V/////%%"
~ Export Key Software: Scanned in 00mn 00s



---\\ Recherche de clés de registre CLSID (O101)
[HKCR\CLSID\{5E89ACE9-E16B-499A-87B4-0DBF742404C1}] (globalUpdate.OneClickProcessLauncher) =>PUP.GlobalUpdate
[HKCR\CLSID\{8E65ED4A-DA5A-3D2F-EA44-34A830EADAAB}] (BlockAndSurf) =>PUP.BlockAndSurf
~ BCK: 3944 Scanned in 00mn 07s



---\\ Etat général des services non Microsoft (EGS) (SR=Running, SS=Stopped)
SS - | Demand 22/07/1658 0 | (ACDaemon) . (...) - C:\Program Files (x86)\Common Files\ArcSoft\Connection Service\Bin\ACService.exe
SS - | Demand 15/04/2015 268464 | (AdobeFlashPlayerUpdateSvc) . (.Adobe Systems Incorporated.) - C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe
SS - | Demand 11/08/2010 69120 | (Boonty Games) . (.BOONTY.) - C:\Program Files (x86)\Common Files\BOONTY Shared\Service\Boonty.exe
SS - | Auto 15/04/2015 68608 | (globalUpdate) . (.globalUpdate.) - C:\Program Files (x86)\globalUpdate\Update\GoogleUpdate.exe =>PUP.GlobalUpdate
SS - | Demand 15/04/2015 68608 | (globalUpdatem) . (.globalUpdate.) - C:\Program Files (x86)\globalUpdate\Update\GoogleUpdate.exe =>PUP.GlobalUpdate
SS - | Auto 15/10/2014 107912 | (gupdate) . (.Google Inc..) - C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
SS - | Demand 15/10/2014 107912 | (gupdatem) . (.Google Inc..) - C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
SS - | Auto 02/04/2015 158816 | (IHProtect Service) . (...) - C:\Program Files (x86)\XTab\ProtectService.exe =>Adware.AgentODR
SS - | Auto 21/11/2014 1871160 | (MBAMScheduler) . (.Malwarebytes Corporation.) - C:\Program Files (x86)\Malwarebytes Anti-Malware\mbamscheduler.exe
SS - | Auto 21/11/2014 969016 | (MBAMService) . (.Malwarebytes Corporation.) - C:\Program Files (x86)\Malwarebytes Anti-Malware\mbamservice.exe
SS - | Demand 03/04/2015 148080 | (MozillaMaintenance) . (.Mozilla Foundation.) - C:\Program Files (x86)\Mozilla Maintenance Service\maintenanceservice.exe
SS - | Demand 23/09/2008 50424 | (NTIBackupSvc) . (.NewTech InfoSystems, Inc..) - C:\Program Files (x86)\NewTech Infosystems\NTI Backup Now 5\BackupSvc.exe
SS - | Auto 27/03/2014 581568 | (ogmservice) . (.RealNetworks, Inc..) - C:\Program Files (x86)\Online Games Manager\ogmservice.exe
SS - | Auto 05/02/2015 729112 | (Orange update Core Service) . (.Orange SA.) - C:\Program Files (x86)\Orange\OrangeUpdate\Service\OUCore.exe
SS - | Auto 26/01/2014 84328 | (Registry Helper Service) . (.SafeApp Software, LLC.) - C:\Program Files (x86)\Registry Helper\RegistryHelperService.exe =>PUP.RegistryHelper
SS - | Auto 13/06/2008 241734 | (RichVideo) . (...) - C:\Program Files (x86)\CyberLink\Shared Files\RichVideo.exe
SS - | Demand 07/04/2008 430592 | (ServiceLayer) . (.Nokia..) - C:\Program Files (x86)\PC Connectivity Solution\ServiceLayer.exe
SS - | Auto 23/10/2013 172192 | (SkypeUpdate) . (.Skype Technologies.) - C:\Program Files (x86)\Skype\Updater\Updater.exe
SS - | Demand 16/03/2011 407336 | (Steam Client Service) . (.Valve Corporation.) - C:\Program Files (x86)\Common Files\Steam\SteamService.exe
SS - | Demand 19/02/2010 517096 | (SwitchBoard) . (.Adobe Systems Incorporated.) - C:\Program Files (x86)\Common Files\Adobe\SwitchBoard\SwitchBoard.exe
SS - | Auto 15/04/2015 493712 | (WindowsMangerProtect) . (...) - C:\ProgramData\WindowsMangerProtect\ProtectWindowsManager.exe =>PUP.Fuyu
SS - | Demand 22/07/1658 0 | (WMPNetworkSvc) . (...) - C:\Program Files (x86)\Windows Media Player\wmpnetwk.exe =>.Microsoft Corporation
SR - | Auto 15/04/2015 2313768 | (5d9df4c6) . (...) - c:\Program Files (x86)\Optimizer Pro 3.79\OptProMon.dll =>PUP.OptimizerPro
SR - | Auto 20/05/2008 269448 | (Acer HomeMedia Connect Service) . (.CyberLink.) - C:\Program Files (x86)\Acer Arcade Live\Acer HomeMedia Connect\Kernel\DMS\CLMSServer.exe
SR - | Auto 30/08/2011 462184 | (Bonjour Service) . (.Apple Inc..) - C:\Program Files\Bonjour\mDNSResponder.exe
SR - | Auto 14/04/2015 2308280 | (DCL) . (.DC Corporation.) - C:\Program Files (x86)\IGS\DCL.exe
SR - | Auto 29/07/2008 500784 | (eDataSecurity Service) . (.Egis Incorporated.) - C:\Program Files (x86)\Acer\Empowering Technology\eDataSecurity\x86\eDSService.exe
SR - | Auto 01/10/2008 24576 | (ETService) . (...) - C:\Program Files\Acer\Empowering Technology\Service\ETService.exe
SR - | Auto 10/04/2015 278600 | (insvc_1.10.0.14) . (.Infonaut.) - C:\Program Files (x86)\Infonaut_1.10.0.14\Service\insvc.exe =>PUP.Infonaut
SR - | Auto 19/10/2006 61440 | (LightScribeService) . (.Hewlett-Packard Company.) - C:\Program Files (x86)\Common Files\LightScribe\LSSrvc.exe
SR - | Auto 30/01/2015 23784 | (MsMpSvc) . (.Microsoft Corporation.) - c:\Program Files\Microsoft Security Client\MsMpEng.exe
SR - | Auto 23/09/2009 935208 | (Nero BackItUp Scheduler 4.0) . (.Nero AG.) - C:\Program Files (x86)\Common Files\Nero\Nero BackItUp 4\NBService.exe
SR - | Auto 23/09/2008 144632 | (NTISchedulerSvc) . (.NewTech Infosystems, Inc..) - C:\Program Files (x86)\NewTech Infosystems\NTI Backup Now 5\SchedulerSvc.exe
SR - | Auto 20/05/2014 927520 | (nvsvc) . (.NVIDIA Corporation.) - C:\Windows\system32\nvvsvc.exe
SR - | Auto 27/08/2013 2155296 | (nvUpdatusService) . (.NVIDIA Corporation.) - C:\Program Files (x86)\NVIDIA Corporation\NVIDIA Update Core\daemonu.exe
SR - | Auto 15/04/2015 142848 | (pylymezy) . (...) - C:\Users\betto\AppData\Roaming\VOPackage\VOsrv.exe =>Adware.Downware
SR - | Auto 14/12/2010 501336 | (Serveur Média) . (.PacketVideo.) - C:\Program Files (x86)\Serveur Media\twonkymediaserverwatchdog.exe
SR - | Auto 15/04/2015 641296 | (Service Mgr DigitalMore) . (...) - C:\ProgramData\8708eaaa-1c2b-4faa-8923-a6c9f88eeb0e\plugincontainer.exe =>PUP.DigitalMore
SR - | Auto 10/04/2015 586264 | (StormWatch Update Service) . (...) - C:\Program Files (x86)\StormWatch\StormWatchSrv.exe =>PUP.StormWatch
SR - | Auto 22/11/2014 17584 | (SWUpdater) . (.Weather Protector LLC.) - C:\Program Files (x86)\StormWatch\SWUpdaterSvc.exe =>PUP.StormWatch
SR - | Auto 15/04/2015 561424 | (Update Mgr DigitalMore) . (...) - C:\Program Files (x86)\Common Files\8708eaaa-1c2b-4faa-8923-a6c9f88eeb0e\updater.exe =>PUP.DigitalMore
SR - | Auto 31/03/2015 686592 | (WaNetworkEnhance Service) . (...) - C:\Program Files (x86)\WaNetworkEnhance\WaNetworkEnhance Internet Enhancer\InternetEnhancerService.exe
SR - | Auto 21/01/2008 27648 | C:\Windows\System32\wuaueng.dll (wuauserv) . (.Microsoft Corporation.) - C:\Windows\System32\svchost.exe
~ Services: Scanned in 00mn 07s



---\\ Recherche d'infection sur le Master Boot Record (MBR)(O80)
Run by betto at 15/04/2015 20:11:34
~ OS 64 not supported by MBR tool
~ MBR: 0 Scanned in 00mn 00s



---\\ Recherche d'infection sur le Master Boot Record (MBRCheck)(O80)
Written by ad13, http://ad13.geekstog
Run by betto at 15/04/2015 20:11:36
********* Dump file Name *********
C:\PhysicalDisk0_MBR.bin
~ MBR: Scanned in 00mn 02s



---\\ Liste des émulateurs de CD/DVD (MBR Hook)
O58 - SDL:03/08/2013 - 07:31:41 ---A- . (.Duplex Secure Ltd. - SCSI Pass Through Direct Host.) -- C:\Windows\System32\Drivers\sptd.sys [564824]
O42 - Logiciel: DAEMON Tools Lite - (.Disc Soft Ltd.) [HKLM][64Bits] -- DAEMON Tools Lite =>.DT Soft Ltd
~ Emulateurs: Scanned in 00mn 02s



---\\ Scan Additionnel (O88)
Database Version : 13008 - (13/04/2015)
Clés trouvées (Keys found) : 58
Valeurs trouvées (Values found) : 2
Dossiers trouvés (Folders found) : 40
Fichiers trouvés (Files found) : 82

[HKLM\Software\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{8E65ED4A-DA5A-3D2F-EA44-34A830EADAAB}] =>PUP.BlockAndSurf^
[HKLM\SYSTEM\CurrentControlSet\Services\5d9df4c6] =>PUP.OptimizerPro^
[HKLM\SYSTEM\CurrentControlSet\Services\globalUpdate) (globalUpdate] =>PUP.GlobalUpdate^
[HKLM\SYSTEM\CurrentControlSet\Services\IHProtect Service] =>Adware.AgentODR^
[HKLM\SYSTEM\CurrentControlSet\Services\insvc_1.10.0.14] =>PUP.Infonaut^
[HKLM\SYSTEM\CurrentControlSet\Services\pylymezy] =>Adware.Downware^
[HKLM\SYSTEM\CurrentControlSet\Services\Registry Helper Service] =>PUP.RegistryHelper^
[HKLM\SYSTEM\CurrentControlSet\Services\Service Mgr DigitalMore] =>PUP.DigitalMore^
[HKLM\SYSTEM\CurrentControlSet\Services\StormWatch Update Service] =>PUP.StormWatch^
[HKLM\SYSTEM\CurrentControlSet\Services\SWUpdater] =>PUP.StormWatch^
[HKLM\SYSTEM\CurrentControlSet\Services\Update Mgr DigitalMore] =>PUP.DigitalMore^
[HKLM\SYSTEM\CurrentControlSet\Services\WindowsMangerProtect] =>PUP.Fuyu^
[HKLM\Software\Microsoft\Windows\CurrentVersion\Uninstall\00212D92-C5D8-4ff4-AE50-B20F0F85C40A_Systweak_Ad~34F3174E_is1] =>PUP.AdvancedSystemProtector^
[HKLM\Software\Microsoft\Windows\CurrentVersion\Uninstall\AnyProtect] =>PUP.CMILimited^
[HKLM\Software\Microsoft\Windows\CurrentVersion\Uninstall\D61CFC10-9823-110E-ED54-998575A4400D] =>PUP.BlockAndSurf^
[HKLM\Software\Microsoft\Windows\CurrentVersion\Uninstall\{cfd32d46-7d3f-483f-bace-7172aec5592d}] =>PUP.BuzzDock^
[HKLM\Software\Microsoft\Windows\CurrentVersion\Uninstall\Cinema PlusV14.04] =>PUP.CrossRider^
[HKLM\Software\Microsoft\Windows\CurrentVersion\Uninstall\Digital More] =>PUP.DigitalMore^
[HKLM\Software\Microsoft\Windows\CurrentVersion\Uninstall\gmsd_fr_424_is1] =>PUP.CrossRider^
[HKLM\Software\Microsoft\Windows\CurrentVersion\Uninstall\Infonaut_1.10.0.14] =>PUP.Infonaut^
[HKLM\Software\Microsoft\Windows\CurrentVersion\Uninstall\Optimizer Pro_is1] =>PUP.OptimizerPro^
[HKLM\Software\Microsoft\Windows\CurrentVersion\Uninstall\RegClean-Pro_is1] =>Rogue.RegistryPowerCleaner^
[HKLM\Software\Microsoft\Windows\CurrentVersion\Uninstall\Registry Helper] =>PUP.RegistryHelper^
[HKLM\Software\Microsoft\Windows\CurrentVersion\Uninstall\VOPackage] =>PUP.CMILimited^
[HKLM\Software\Microsoft\Windows\CurrentVersion\Uninstall\wincheck] =>PUP.Wincheck^
[HKLM\Software\Microsoft\Windows\CurrentVersion\Uninstall\SmartWeb] =>PUP.SmartWeb^
[HKLM\Software\Microsoft\Windows\CurrentVersion\Uninstall\StormWatch] =>PUP.StormWatch^
[HKLM\Software\Microsoft\Windows\CurrentVersion\Uninstall\WaNetworkEnhance] =>PUP.Wajam^
[HKCU\Software\Microsoft\Windows\CurrentVersion\Uninstall\uTorrent] =>P2P.BitTorrent^
[HKLM\Software\Microsoft\Windows\CurrentVersion\Uninstall\uTorrent] =>P2P.BitTorrent^
[HKLM\Software\Microsoft\Shared Tools\MSConfig\startupreg\ApnTBMon] =>Toolbar.AskBar^
[HKLM\Software\Microsoft\Shared Tools\MSConfig\startupreg\gmsd_fr_424] =>PUP.CrossRider^
[HKLM\Software\Microsoft\Shared Tools\MSConfig\startupreg\Optimizer Pro] =>PUP.OptimizerPro^
[HKLM\Software\Microsoft\Shared Tools\MSConfig\startupreg\Registry Helper] =>PUP.RegistryHelper^
[HKLM\Software\Microsoft\Shared Tools\MSConfig\startupreg\SmartWeb] =>PUP.SmartWeb^
[HKLM\Software\Microsoft\Shared Tools\MSConfig\startupreg\StormWatch] =>PUP.StormWatch^
[HKLM\Software\Microsoft\Shared Tools\MSConfig\startupreg\WinCheck] =>PUP.Wincheck^
[HKLM\Software\Microsoft\Shared Tools\MSConfig\startupreg\Yontoo Desktop] =>Adware.Yontoo^
[HKCU\Software\APN PIP] =>Toolbar.Ask
[HKLM\Software\Wow6432Node\Iminent] =>Adware.IMBooster
[HKCU\Software\iwin] =>Adware.iWinArcade
[HKCU\Software\Tutorials] =>Spyware.AgenceExclusive
[HKLM\Software\Wow6432Node\Tutorials] =>Spyware.AgenceExclusive
[HKCU\Software\Microsoft\Windows\CurrentVersion\Uninstall\IMBoosterARP] =>Adware.IMBooster
[HKLM\Software\Wow6432Node\Microsoft\Windows\CurrentVersion\Uninstall\IMBoosterARP] =>Adware.IMBooster
[HKCU\Software\Microsoft\Windows\CurrentVersion\Uninstall\SearchProtect] =>Toolbar.Conduit
[HKCU\Software\AppDataLow\Software\Crossrider] =>PUP.CrossRider
[HKCU\Software\InstalledBrowserExtensions\] =>PUP.CrossRider
[HKCU\Software\HomeTab] =>PUP.CertifiedToolbar
[HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{5CBE3B7C-1E47-477E-A7DD-396DB0476E29}] =>Toolbar.eDataSecurity
[HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Settings\{5CBE3B7C-1E47-477E-A7DD-396DB0476E29}] =>Toolbar.eDataSecurity
[HKLM\Software\Classes\CLSID\{5CBE3B7C-1E47-477E-A7DD-396DB0476E29}] =>Toolbar.eDataSecurity
[HKCU\Software\InstalledBrowserExtensions] =>PUP.CrossRider
[HKLM\Software\InstalledBrowserExtensions] =>PUP.CrossRider
[HKLM\Software\Wow6432Node\InstalledBrowserExtensions] =>PUP.CrossRider
[HKCU\Software\AppDataLow\{1146AC44-2F03-4431-B4FD-889BC837521F}] =>PUP.OptimizerPro
[HKLM\Software\Wow6432Node\{1146AC44-2F03-4431-B4FD-889BC837521F}] =>PUP.OptimizerPro
[HKCU\Software\Microsoft\Windows\CurrentVersion\Uninstall\IminentToolbar] =>Adware.IMBooster
[HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]:uTorrent =>P2P.BitTorrent^
C:\Users\betto\AppData\Roaming\Mozilla\Firefox\Profiles\EP: RegExtension {58102098-601E-13CE-331B-C1AEDE02FD33} . (...) -- C:\extensions\Program Files (x86)\version36BlockAndSurf\192.xpi =>PUP.BlockAndSurf^
C:\Users\betto\AppData\Roaming\Mozilla\Firefox\Profiles\9zgyi6yv.default\extensions\istart_ffnt@gmail.com =>PUP.Istart^
C:\Users\betto\AppData\Roaming\Mozilla\Firefox\Profiles\9zgyi6yv.default\extensions\searchengine@gmail.com =>PUP.SearchEngine^
C:\Program Files (x86)\AnyProtectEx =>PUP.AnyProtect^
C:\Program Files (x86)\Cinema PlusV14.04 =>PUP.CrossRider^
C:\Program Files (x86)\Cinema PlusV14.04-ntf =>PUP.CrossRider^
C:\Program Files (x86)\Digital More =>PUP.DigitalMore^
C:\Program Files (x86)\globalUpdate =>PUP.GlobalUpdate^
C:\Program Files (x86)\gmsd_fr_424 =>PUP.CrossRider^
C:\Program Files (x86)\Infonaut_1.10.0.14 =>PUP.Infonaut^
C:\Program Files (x86)\Optimizer Pro 3.79 =>PUP.OptimizerPro^
C:\Program Files (x86)\Registry Helper =>PUP.RegistryHelper^
C:\Program Files (x86)\StormWatch =>PUP.StormWatch^
C:\Program Files (x86)\uTorrent =>P2P.µTorrent^
C:\Program Files (x86)\version36BlockAndSurf =>PUP.BlockAndSurf^
C:\Program Files (x86)\Wajam =>PUP.Wajam^
C:\Program Files (x86)\WaNetworkEnhance =>PUP.Wajam^
C:\ProgramData\IHProtectUpDate =>Adware.AgentODR^
C:\ProgramData\Registry Helper =>PUP.RegistryHelper^
C:\ProgramData\Trymedia =>Adware.Trymedia^
C:\ProgramData\WindowsMangerProtect =>PUP.Fuyu^
C:\ProgramData\Microsoft\Windows\Start Menu\Programs\GAMESDESKTOP =>Adware.GamesDesktop^
C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Optimizer Pro v3.2 =>PUP.OptimizerPro^
C:\ProgramData\Microsoft\Windows\Start Menu\Programs\RegClean Pro =>Rogue.RegistryPowerCleaner^
C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Registry Helper =>PUP.RegistryHelper^
C:\ProgramData\Microsoft\Windows\Start Menu\Programs\StormWatch =>PUP.StormWatch^
C:\Users\betto\AppData\Roaming\AnyProtectEx =>PUP.AnyProtect^
C:\Users\betto\AppData\Roaming\Optimizer Pro =>PUP.OptimizerPro^
C:\Users\betto\AppData\Roaming\StormFall =>Adware.StormFall^
C:\Users\betto\AppData\Roaming\uTorrent =>P2P.µTorrent^
C:\Users\betto\AppData\Roaming\VOPackage =>Adware.Downware^
C:\Users\betto\AppData\Local\globalUpdate =>PUP.GlobalUpdate^
C:\Users\betto\AppData\Local\gmsd_fr_424 =>PUP.CrossRider^
C:\Users\betto\AppData\Local\SmartWeb =>PUP.SmartWeb^
C:\Users\betto\AppData\Local\StormFall =>Adware.StormFall^
C:\Users\betto\AppData\Local\StormWatch =>PUP.StormWatch^
C:\Users\betto\AppData\Local\Weather_Protector_LLC =>PUP.StormWatch^
C:\Users\betto\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\AnyProtect PC Backup =>PUP.AnyProtect^
C:\Users\betto\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\StormWatch =>PUP.StormWatch^
C:\Users\betto\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\VOPackage =>Adware.Downware^
C:\Program Files (x86)\Infonaut_1.10.0.14\Service\insvc.exe =>PUP.Infonaut^
C:\Users\betto\AppData\Roaming\VOPackage\VOsrv.exe =>Adware.Downware^
C:\Program Files (x86)\StormWatch\SWUpdaterSvc.exe =>PUP.StormWatch^
C:\Program Files (x86)\StormWatch\StormWatchSrv.exe =>PUP.StormWatch^
C:\Program Files (x86)\Cinema PlusV14.04\678a7185-5455-440b-b575-a67817b3d169-1-7.exe =>PUP.CrossRider^
C:\Program Files (x86)\Cinema PlusV14.04\678a7185-5455-440b-b575-a67817b3d169-3.exe =>PUP.CrossRider^
C:\Program Files (x86)\Cinema PlusV14.04\678a7185-5455-440b-b575-a67817b3d169-4.exe =>PUP.CrossRider^
C:\Program Files (x86)\Cinema PlusV14.04\678a7185-5455-440b-b575-a67817b3d169-5.exe =>PUP.CrossRider^
C:\Program Files (x86)\Cinema PlusV14.04\678a7185-5455-440b-b575-a67817b3d169-7.exe =>PUP.CrossRider^
C:\Users\betto\AppData\Roaming\ACXWGNVQ.exe =>PUP.CrossRider^
C:\Program Files (x86)\ASP\AdvancedSystemProtector.exe =>PUP.AdvancedSystemProtector^
C:\Program Files (x86)\AnyProtectEx\AnyProtect.exe =>PUP.AnyProtect^
C:\Program Files (x86)\globalUpdate\Update\GoogleUpdate.exe =>PUP.GlobalUpdate^
C:\Program Files (x86)\Optimizer Pro 3.79\OptProLauncher.exe =>PUP.OptimizerPro^
C:\Program Files (x86)\RCP\RegCleanPro.exe =>Rogue.RegistryPowerCleaner^
C:\Users\betto\AppData\Local\SmartWeb\SmartWebHelper.exe =>PUP.SmartWeb^
C:\Windows\Tasks\678a7185-5455-440b-b575-a67817b3d169-1-7.job =>PUP.CrossRider^
C:\Windows\System32\Tasks\678a7185-5455-440b-b575-a67817b3d169-1-7 =>PUP.CrossRider^
C:\Windows\Tasks\678a7185-5455-440b-b575-a67817b3d169-3.job =>PUP.CrossRider^
C:\Windows\System32\Tasks\678a7185-5455-440b-b575-a67817b3d169-3 =>PUP.CrossRider^
C:\Windows\Tasks\678a7185-5455-440b-b575-a67817b3d169-4.job =>PUP.CrossRider^
C:\Windows\System32\Tasks\678a7185-5455-440b-b575-a67817b3d169-4 =>PUP.CrossRider^
C:\Windows\Tasks\678a7185-5455-440b-b575-a67817b3d169-5.job =>PUP.CrossRider^
C:\Windows\System32\Tasks\678a7185-5455-440b-b575-a67817b3d169-5 =>PUP.CrossRider^
C:\Windows\Tasks\678a7185-5455-440b-b575-a67817b3d169-5_user.job =>PUP.CrossRider^
C:\Windows\System32\Tasks\678a7185-5455-440b-b575-a67817b3d169-5_user =>PUP.CrossRider^
C:\Windows\Tasks\678a7185-5455-440b-b575-a67817b3d169-6.job =>PUP.CrossRider^
C:\Windows\System32\Tasks\678a7185-5455-440b-b575-a67817b3d169-6 =>PUP.CrossRider^
C:\Windows\Tasks\678a7185-5455-440b-b575-a67817b3d169-7.job =>PUP.CrossRider^
C:\Windows\System32\Tasks\678a7185-5455-440b-b575-a67817b3d169-7 =>PUP.CrossRider^
C:\Windows\Tasks\ACXWGNVQ.job =>PUP.CrossRider^
C:\Windows\System32\Tasks\ACXWGNVQ =>PUP.CrossRider^
C:\Windows\Tasks\APSnotifierPP1.job =>PUP.AnyProtect^
C:\Windows\System32\Tasks\APSnotifierPP1 =>PUP.AnyProtect^
C:\Windows\Tasks\APSnotifierPP2.job =>PUP.AnyProtect^
C:\Windows\System32\Tasks\APSnotifierPP2 =>PUP.AnyProtect^
C:\Windows\Tasks\APSnotifierPP3.job =>PUP.AnyProtect^
C:\Windows\System32\Tasks\APSnotifierPP3 =>PUP.AnyProtect^
C:\Windows\Tasks\BlockAndSurf Update.job =>PUP.BlockAndSurf^
C:\Windows\System32\Tasks\BlockAndSurf Update =>PUP.BlockAndSurf^
C:\Windows\Tasks\globalUpdateUpdateTaskMachineCore.job =>PUP.GlobalUpdate^
C:\Windows\System32\Tasks\globalUpdateUpdateTaskMachineCore =>PUP.GlobalUpdate^
C:\Windows\Tasks\globalUpdateUpdateTaskMachineUA.job =>PUP.GlobalUpdate^
C:\Windows\System32\Tasks\globalUpdateUpdateTaskMachineUA =>PUP.GlobalUpdate^
C:\Windows\Tasks\RegClean Pro_DEFAULT.job =>Rogue.RegistryPowerCleaner^
C:\Windows\System32\Tasks\RegClean Pro_DEFAULT =>Rogue.RegistryPowerCleaner^
C:\Windows\Tasks\RegClean Pro_UPDATES.job =>Rogue.RegistryPowerCleaner^
C:\Windows\System32\Tasks\RegClean Pro_UPDATES =>Rogue.RegistryPowerCleaner^
[HKCU\Software\AnyProtect] =>PUP.AnyProtect^
[HKCU\Software\AppDataLow\Software\BlockAndSurf] =>PUP.BlockAndSurf^
[HKCU\Software\AppDataLow\Software\SmartWeb] =>PUP.SmartWeb^
[HKCU\Software\BitTorrent] =>P2P.BitTorrent^
[HKCU\Software\Cinema PlusV14.04-ntf] =>PUP.CrossRider^
[HKCU\Software\Cinema PlusV14.04-nv-ie] =>PUP.CrossRider^
[HKCU\Software\Cinema PlusV14.04-nv] =>PUP.CrossRider^
[HKCU\Software\Conduit] =>Toolbar.Conduit^
[HKCU\Software\Optimizer Pro] =>PUP.OptimizerPro^
[HKCU\Software\ProductSetup] =>Adware.InstallCore^
[HKCU\Software\SearchProtectWS] =>PUP.SearchProtect^
[HKCU\Software\SimplyTech] =>PUP.SimplyTech^
[HKCU\Software\StormWatchApp] =>PUP.StormWatch^
[HKCU\Software\TNT2] =>Adware.TidyNetwork^
[HKCU\Software\TutoTag] =>PUP.AgenceExclusive^
[HKCU\Software\WajIEnhance] =>PUP.Wajam^
[HKCU\Software\globalUpdate] =>PUP.GlobalUpdate^
[HKLM\Software\Wow6432Node\2bd8d77a-dee4-4beb-9e08-3100d5bfbff9] =>PUP.CrossRider^
[HKLM\Software\Wow6432Node\Cinema PlusV14.04-nv-ie] =>PUP.CrossRider^
[HKLM\Software\Wow6432Node\Cinema PlusV14.04-nv] =>PUP.CrossRider^
[HKLM\Software\Wow6432Node\Conduit] =>Toolbar.Conduit^
[HKLM\Software\Wow6432Node\DigitalMore] =>PUP.DigitalMore^
[HKLM\Software\Wow6432Node\GAMESDESKTOP] =>Adware.GamesDesktop^
[HKLM\Software\Wow6432Node\GlobalUpdate] =>PUP.GlobalUpdate^
[HKLM\Software\Wow6432Node\IHProtect] =>Adware.AgentODR^
[HKLM\Software\Wow6432Node\StormWatchApp] =>PUP.StormWatch^
[HKLM\Software\Wow6432Node\SupDp] =>PUP.SupTab^
[HKLM\Software\Wow6432Node\Trymedia Systems] =>Adware.Trymedia^
[HKLM\Software\Wow6432Node\ea30e8eb-2ca4-474b-0194-b4395eed20e4] =>PUP.CrossRider^
[HKLM\Software\Wow6432Node\luckysearchesSoftware] =>Hijacker.LuckySearches^
[HKLM\Software\Wow6432Node\supTab] =>PUP.SupTab^
[HKLM\Software\Wow6432Node\sweet-pageSoftware] =>PUP.SweetPage^
[HKCR\CLSID\{5E89ACE9-E16B-499A-87B4-0DBF742404C1}] (globalUpdate.OneClickProcessLauncher) =>PUP.GlobalUpdate^
[HKCR\CLSID\{8E65ED4A-DA5A-3D2F-EA44-34A830EADAAB}] (BlockAndSurf) =>PUP.BlockAndSurf^
~ Additionnel Scan: 561092 Items scanned in 01mn 56s



---\\ Informations complémentaires sur les modules
~ http://nicolascoolman.fr/g2-google-chrome-extensions/ =>.Google Chrome, Démarrage,Recherche,Extensions (G0,G1,G2)
~ http://nicolascoolman.fr/r5-internet-explorer-proxy-management-iepm/ =>.Internet Explorer, Proxy Management (R5)
~ http://nicolascoolman.fr/o2-browser-helper-objects-de-navigateur/ =>.Browser Helper Objects de navigateur (O2)
~ http://nicolascoolman.fr/o3-internet-explorer-toolbars/ =>.Internet Explorer Toolbars (O3)
~ http://nicolascoolman.fr/o4-applications-demarrees-par-le-registre/ =>.Applications lancées au démarrage du système (O4)
~ AMI: 5 Scanned in 00mn 00s



---\\ Récapitulatif des détections trouvées sur votre station
http://www.nicolascoolman.fr/blog/ =>PUP.Infonaut
http://nicolascoolman.fr/adware-downware =>Adware.Downware
http://www.nicolascoolman.fr/blog/ =>PUP.StormWatch
http://nicolascoolman.fr/pup-crossrider =>PUP.CrossRider
http://www.nicolascoolman.fr/blog/ =>Hijacker.LuckySearches
http://nicolascoolman.fr/pup-sweetpage =>PUP.SweetPage
http://nicolascoolman.fr/pup-blockandsurf =>PUP.BlockAndSurf
http://www.nicolascoolman.fr/blog/ =>PUP.Istart
http://www.nicolascoolman.fr/blog/ =>PUP.SearchEngine
http://nicolascoolman.fr/hijacker-proxy =>Hijacker.Proxy
http://nicolascoolman.fr/pup-optimizerpro =>PUP.OptimizerPro
http://nicolascoolman.fr/pup-globalupdate =>PUP.GlobalUpdate
http://www.nicolascoolman.fr/blog/ =>Adware.AgentODR
http://www.nicolascoolman.fr/blog/ =>PUP.RegistryHelper
http://www.nicolascoolman.fr/blog/ =>PUP.DigitalMore
http://www.nicolascoolman.fr/blog/ =>PUP.Fuyu
http://nicolascoolman.fr/pup-advancedsystemprotector =>PUP.AdvancedSystemProtector
http://nicolascoolman.fr/pup-anyprotect =>PUP.AnyProtect
http://nicolascoolman.fr/rogue-registrypowercleaner =>Rogue.RegistryPowerCleaner
http://nicolascoolman.fr/pup-smartwebsearch =>PUP.SmartWeb
http://www.nicolascoolman.fr/blog/ =>PUP.CMILimited
http://www.nicolascoolman.fr/blog/ =>PUP.BuzzDock
http://www.nicolascoolman.fr/blog/ =>PUP.Wincheck
http://nicolascoolman.fr/pup-wajam =>PUP.Wajam
http://nicolascoolman.fr/toolbar-conduit =>Toolbar.Conduit
http://nicolascoolman.fr/pup-certifiedtoolbar =>PUP.CertifiedToolbar
http://www.nicolascoolman.fr/blog/ =>PUP.BrowserExtensions
http://nicolascoolman.fr/adware-installcore =>Adware.InstallCore
http://nicolascoolman.fr/pup-searchprotect =>PUP.SearchProtect
http://www.nicolascoolman.fr/blog/ =>PUP.SimplyTech
http://nicolascoolman.fr/adware-tidynetwork =>Adware.TidyNetwork
http://nicolascoolman.fr/spyware-agenceexclusive =>PUP.AgenceExclusive
http://www.nicolascoolman.fr/blog/ =>Adware.GamesDesktop
http://nicolascoolman.fr/adware-imbooster =>Adware.IMBooster
http://nicolascoolman.fr/pup-suptab =>PUP.SupTab
http://nicolascoolman.fr/adware-trymedia =>Adware.Trymedia
http://www.nicolascoolman.fr/blog/ =>Adware.StormFall
http://www.nicolascoolman.fr/blog/ =>PUP.CorsicaTechnologies
http://www.nicolascoolman.fr/blog/ =>Toolbar.AskBar
http://nicolascoolman.fr/adware-yontoo =>Adware.Yontoo
http://nicolascoolman.fr/pup-internetprogram =>PUP.InternetProgram
http://nicolascoolman.fr/pup-vuupc =>PUP.VuuPC
http://nicolascoolman.fr/pup-wpmanager =>PUP.WpManager
http://nicolascoolman.fr/toolbar-ask =>Toolbar.Ask
http://nicolascoolman.fr/adware-iwinarcade =>Adware.iWinArcade
http://www.nicolascoolman.fr/blog/ =>Spyware.AgenceExclusive
http://www.nicolascoolman.fr/blog/ =>Toolbar.eDataSecurity
~ MSI: 47 link(s) detected in 00mn 00s



---\\ Alert Messages
WARNING : Hijacker Proxy found, Clean with ZHPCleaner Tool

End of the scan (2991 lines in 05mn 06s)(22.8)

Publicité


Signaler le contenu de ce document

Publicité